Professional Documents
Culture Documents
Lecture 23
CS526
Fall 2008/Lecture 23
What is integrity?
Integrity: Critical data not changed in incorrect ways Confidentiality vs. Integrity
Confidentiality Integrity
Control reading
For subjects who need to read, control they writing is sufficient
Control writing
For subjects who need to write, control what they read is not sufficient
CS526
Fall 2008/Lecture 23
CS526
Fall 2008/Lecture 23
CS526
Subjects integrity level decreases as reading lower integrity data No information path from low-object to highobject
CS526 Fall 2008/Lecture 23 7
Objects integrity level decreases as it is contaminated by subjects Objects with high labels are not contaminated
CS526
Fall 2008/Lecture 23
CS526
Fall 2008/Lecture 23
CS526
Fall 2008/Lecture 23
10
flexible-level
fixed-level
CS526 Fall 2008/Lecture 23 11
What should the relation between the two meanings, which one should be higher?
CS526
Fall 2008/Lecture 23
12
Strict
Flexible-level
Trusted to handle low input
Fall 2008/Lecture 23
Quality
Importance and/or quality
13
CS526
Fall 2008/Lecture 23
14
CS526
Fall 2008/Lecture 23
15
CS526
Fall 2008/Lecture 23
17
CS526
Fall 2008/Lecture 23
18
CS526
Fall 2008/Lecture 23
20
CS526
Fall 2008/Lecture 23
21
CS526
Fall 2008/Lecture 23
22
CS526
Fall 2008/Lecture 23
23
Coming Attractions
Examples of Integrity Protection in Operating Systems
LOMAC UMIP Windows MIC
CS526
Fall 2008/Lecture 23
24