Time
7 hours 35 minutes
Difficulty
Intermediate
CEU/CPE
12

Video Transcription

00:02
Hi, guys. Welcome to domain one Lesson two of the S S. C. P course starring me. Your host Peter Sip alone.
00:13
Tonight's lesson is about security model, specifically ones focusing on confidentiality The model will be focusing on tonight is the Bell UPA jewel model, which has been designed with confidentiality in mind. This model is mostly used in government military installations and has two properties
00:32
the simple security property
00:34
otherwise known as no read up on the star property known as know right down.
00:41
Let's take a look at an example here, in this example, we have four different security level clearance is that the military uses we have unclassified, confidential, secret and top secret.
00:56
John from the FBI has Secret Clearance
01:00
File A is labeled top secret.
01:03
This means John cannot read file because one of the properties of this of the Bella Pa. Jewel model is no read up. That means John cannot read anything that is above the secret level Secret clearance level
01:22
file be is labelled confidential.
01:26
He can read file be because it is below his secret clearance level. He cannot write to it because it is no right down
01:37
file. See,
01:38
is labeled secret.
01:41
John can read file Sea, but he cannot write to it. He can read it because it is the same security clearance level that he has, but he cannot write toe because of the property. No. Right down.
01:55
In summary, our brief lecture, we discussed the overall view of the Bell apostle of Security model and its properties.
02:04
Pop quiz.
02:05
John at the FBI
02:07
creates a file on his computer and inside, he puts secret information on a dangerous criminal.
02:13
John needs to give access to others to this file, but he only wants people to see if they have the same security clearance that he does. Or a higher security clearance. Which security model should he use?
02:25
If you answered, See the bell? A popular model? Obviously you are correct.
02:30
Hope you guys learned a lot in this video. Thank you for watching

Up Next

Systems Security Certified Professional (SSCP)

Obtaining your SSCP certification signifies that you possess the ability to tackle the operational demands and responsibilities of security practitioners, including authentication, security testing, intrusion detection/prevention, incident response and recovery, attacks and countermeasures, cryptography, malicious code countermeasures, and more.

Instructed By

Instructor Profile Image
Pete Cipolone
Cyber Security Analyst and Programmer
Instructor