Notes for February 5, 1997

Hello
1. Homework grades will be mailed back soon; grading programs is taking a bit longer than we thought
2. No homework; study for exam and/or work on project
Puzzle of the day
1. Key point: pornographic pictures or pirated software can be left behind in a "." directory that the remove won't delete.
Capabilities

Associate with each object a lock; associate with each process that has access to object a key (it's a cross between ACLs and C-Lists)
Example: use crypto (Gifford). X object enciphered with key K. Associate an opener R with X. Then:
OR-Access: K can be recovered with any D_i in a list of n deciphering transformations, so
R = (E₁(K), E₂(K), ..., E_n(K)) and any process with access to any of the D_i's can access the file
AND-Access: need all n deciphering functions to get K: R = E₁(E₂(...E_n(K)...))

MULTICS ring mechanism
1. MULTICS rings: used for both data and procedures; rights are REWA
2. (b1, b2) access bracket - can access freely; (b3, b4) call bracket - can call segment through gate; so if a's access bracket is (32,35) and its call bracket is (36,39), then assuming permission mode (REWA) allows access, a procedure in:
  rings 0-31: can access a, but ring-crossing fault occurs
  rings 32-35: can access a, no ring-crossing fault
  rings 36-39: can access a, provided a valid gate is used as an entry point
  rings 40-63: cannot access a
3. If the procedure is accessing a data segment d, no call bracket allowed; given the above, assuming permission mode (REWA) allows access, a procedure in:
  rings 0-32: can access d
  rings 33-35: can access d, but cannot write to it (W or A)
  rings 36-63: cannot access d
Mandatory vs. Discretionary;
1. security levels
2. categories
Bell-LaPadula Model
1. Simple Security Property: no reads up
2. Star Property: no writes down
3. Discretionary Security Property: if mandatory controls say it's okay, check discretionary controls.

Department of Computer Science
University of California at Davis
Davis, CA 95616-8562

Page last modified on 2/8/97