Extending the Brewer-Nash model to a multilevel context

1 January 1990

conference paper
Published by Institute of Electrical and Electronics Engineers (IEEE)

p. 95-102
https://doi.org/10.1109/risp.1990.63842

Abstract

It is shown how the Brewer-Nash Chinese wall model can be extended to a policy for handling the aggregation problem in a multilevel context. A lattice-based information flow policy that can be integrated into both the multilevel and Drewer-Nash context is derived. This information flow policy is used to develop a security policy described in terms of labeled subjects accessing labeled objects that will make it possible to construct a system that prevents users from accessing aggregates that they are not cleared to see.

Keywords

This publication has 6 references indexed in Scilit:

The Chinese Wall security policy
Published by Institute of Electrical and Electronics Engineers (IEEE) ,2003
Aggregation and inference: facts and fallacies
Published by Institute of Electrical and Electronics Engineers (IEEE) ,2003
Chinese wall security policy-an aggressive model
Published by Institute of Electrical and Electronics Engineers (IEEE) ,2003
Formal Models for Computer Security
ACM Computing Surveys, 1981
A lattice model of secure information flow
Communications of the ACM, 1976
Secure Computer System: Unified Exposition and Multics Interpretation
Published by Defense Technical Information Center (DTIC) ,1976