ITM 820 Lecture Notes - Lecture 4: Mandatory Access Control, Smart Key, Uninterruptible Power Supply

Confidentiality is the avoidance of the unauthorized, disclosure of info involves. Providing access to resources for those who are allowed to see it. A set of rules and polices applied to resources: authentication (kerbros, ntlm) Determination of the identity or role that someone has. Integrity: the property that information has not been altered in an unauthorized way. Availability: the property of information available to authorized people in a timely fashion. Tools: physical protection (clustering of servers for data and load balancing, network redundancy (routes, switches , battery backup (power backup) The state of a system is defined by a triple soa. An entry a[so] list access rights of subjects s for o object. Hr, printer and project . doc are called object. List privileges for each user - process should have the last set of access rights necessary: separation of privileges, complete mediation each process should be checked for authentication. Is an extension of mandatory access control (mac)