[cap-talk] Mandatory Access Control(was: What's "DiscretionarySecurity")

[Karp, Alan H]

> -----Original Message-----
> From: cap-talk-bounces at mail.eros-os.org 
> [mailto:cap-talk-bounces at mail.eros-os.org] On Behalf Of 
> Jonathan S. Shapiro
> Sent: Wednesday, January 03, 2007 1:38 PM
> To: General discussions concerning capability systems.
> Subject: Re: [cap-talk] Mandatory Access Control(was: What's 
> "DiscretionarySecurity")
> 
> On Wed, 2007-01-03 at 15:27 -0600, Karp, Alan H wrote:
> > Shap wrote:
> > > > > 
> > > > Compartments. 
> > > 
> > > I don't know that I believe it,
> > 
> > Alice has Secret level access to the submarine project.  
> Bob has Secret
> > level access to the bomber project.  Never the twain shall 
> meet.  It's a
> > horizontal cut in the lattice.
> 
> No it isn't. The lattice describes the relationship between
> compartments, not current access.

I don't understand.  Alice is in the submarine project at the Secret
level.  She can read down and write up within that project, but she has
no access to anything related to the bomber project.
> 
> In both of your examples, we know nothing until you assign levels and
> compartments to both the users and the projects.
> 
The second example had only one level.  Alice, by being "in" compartment
Y, had access to the resources in that compartment and was denied, by
the non-discretionary access control mechanism, access to anything in
compartment Z.

_________________________
Alan Karp
Principal Scientist
Virus Safe Computing Initiative
Hewlett-Packard Laboratories 
1501 Page Mill Road
Palo Alto, CA 94304
(650) 857-3967, fax (650) 857-7029
https://ecardfile.com/id/Alan_Karp
http://www.hpl.hp.com/personal/Alan_Karp/
  
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Karp, Alan H.vcf
Type: text/x-vcard
Size: 423 bytes
Desc: Karp, Alan H.vcf
Url : http://www.eros-os.org/pipermail/cap-talk/attachments/20070103/0911e308/attachment.vcf