Computer Security Art and Science, 2nd Edition

Chapter 9 Noninterference and Policy Composition

GONERIL: Combine together against the enemy,

For those domestic poor particulars

Are not to question here.

— The Tragedy of King Lear, V, i, 29–31.

Organizations usually have multiple policy-making units. If two different branches of an organization have conflicting policy needs, or even different policy needs, what policy should the organization as a whole adopt? If one of the policies requires six levels of security, and another three, how can they be composed into a coherent whole—or can they? The answers to these general questions come from information flow models that abstract the essence of security policies. Introduced in 1982, these models focus on each process’s view of the system to ...

Get Computer Security Art and Science, 2nd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Computer Security Art and Science, 2nd Edition by Matt Bishop

Chapter 9

Noninterference and Policy Composition

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly