Multilevel Security Models
Mark Stamp and Ali Hushyar, San Jose State University
The United States Department of Defense (DoD) offers the following definition of multilevel security (Multilevel Security, 1995):
Multilevel security, or MLS, is a capability that allows information with different sensitivities (i.e., classification and compartments) to be simultaneously stored and processed in an information system with users having different security clearances, authorizations, and needs to know, while preventing users from accessing information for which they are not cleared, do not have authorization, or do not have the need to know.
In other words, multilevel security (MLS) deals with issues related to access control. This chapter discusses many of the fundamental MLS models designed to address the issues surrounding MLS.
In its most basic form, an MLS model's access control ...