Answered step by step
Verified Expert Solution
Question
1 Approved Answer
Consider the following set of access control policies over a set of subjects S and a set of objects a) A subject sES can write
Consider the following set of access control policies over a set of subjects S and a set of objects a) A subject sES can write to an object o E0 if the integrity level ioof the object is dominated by the integrity level i(s) of the subject, that is ilo sis If seS reads 0eO, then i'(s)=min(i(s),i(o)), where i'(s) is the subject's integrity level after the read.' b) c) A subject s, ES can execute subject s, eS if and only if the integrity level iS2) of s2 is dominated by the integrity level i(%) of si , that is i(%) si(%) The following questions are based on the above access control policies. You should provide reasons for your answers. a) Can the above set of policies prevent integrity violations in a system consisting of subject set S and object set 0? 10 points b) Assume that the term "information transfer path" is defined as a sequence of objects o,,O,J 0-1 and a corresponding sequence of subjects s,,s, such that s, reads o and s, writes to o for all 1iSn. Based on this definition of information transfer path and the above set of access control rules, show that in order to prevent any integrity violation within the set of objects O, the following object classification must be ensured 10 points the following Yn>1,1(%)sqo)
Step by Step Solution
There are 3 Steps involved in it
Step: 1
Get Instant Access to Expert-Tailored Solutions
See step-by-step solutions with expert insights and AI powered tools for academic success
Step: 2
Step: 3
Ace Your Homework with AI
Get the answers you need in no time with our AI-driven, step-by-step assistance
Get Started