< Back to CSSLP

CSSLP Module 01

CSSLP Module 02

CSSLP Module 03

CSSLP Module 04

CSSLP Module 05

CSSLP Module 06

CSSLP Module 07

Part 4 – Security Models and Access Control Models

Invite Friends
Facebook Twitter Google+ LinkedIn Email
Learning should be free
Cybrary's open source learning community and hands on marketplace enables you to earn new skills and collaborate in an engaging and rewarding way. Join the other 1,205,477 IT professionals today to get free access to
  • Unlimited Free and Open Source Cyber Security Learning
  • CEU/CPE Certificates of Completion
  • Innovative Micro-Certifications
  • Over 200 Certification-based Practice Labs and Practice Tests
  • And much more!
Join Cybrary for Free
Already a member?
Login to view this lesson
Description
Virtual Practice Lab
Practice Test
Resources
Part 4 – Security Models and Access Control Models

This lesson covers security models and access control models. A security model dictates how a system will explore security policy. Three common security models covered in this unit include:
• Bell-LaPadula: designed for US Government Systems that protect state secrets; it is designed to protect CONFIDENTIALITY.

• Biba: designed to protect the INTEGRITY of the knowledge base.

• Clark-Wilson: Don’t allow untrusted users to directly access your trusted resource of they’ll break them. Instead, form them to access resources through a trusted interface.
Access Control models covered in this unit are:
• Discretionary access control (DAC): security of an object is at the owner’s discretion.
• Mandatory Access control (MAC): More secure than DAC as data owners cannot grant access
• Role based access control (RBAC): The owner of an object does not control access. Each role has a set of fights and permission which cannot be changed unless a security administrator is involved.

Coming Soon
Learn on the go.
The app designed for the modern cyber security professional.
Get it on Google PlayGet it on the App Store
Hands On Lab
Verified
Cisco Certified Network Associate (CCNA) Virtual Lab
Evolve your networking skills to fill the role of a core network engineer by using real Cisco Routers and Switches on your own device. The Cisco Certified Network Associate (CCNA) Virtual Lab will prepare you to install, manage, monitor, secure, and troubleshoot bas
29 Hours
$79.99
Hands On Lab
Verified
Certified Information Systems Security Professional (CISSP) Virtual Lab
The CISSP Virtual Lab will provide you with the necessary platform to gain hands-on skills in security. By completing the lab tasks you will improve your practical skills in Security and Risk Management, Asset Security, Security Engineering, Communications and Netwo
25 Hours
$79.99
Practice Test
Verified
Oracle 1Z0-850: Certified Associate Exam
Take a dive into the exciting world of programming with Java SE 5 and 6 and learn object-oriented programming with little to no experience to become an Oracle Certified Associate.
$42.00
Practice Test
Verified
Oracle 1Z0-851: Certified Professional Exam
Take a dive into the exciting world of programming with Java SE 5 and 6 and learn object-oriented programming to become an Oracle Certified Professional.
$42.00
Recommended Study Material
Practice Labs and Exam Vouchers

Congratulations! You're taking the first step to getting certified. Get some hands on experience with available practice labs OR save some money, support Cybrary, and purchase discounted exam vouchers. Ready to earn your next industry certification? Join cyber security's largest community and start learning today.

JOIN CYBRARY

Upcoming Industry Events
Aug
23
[1 CPE Credit] What SD-WAN Vendors Won't Tell You About SD-WANs [NA+EMEA]
Webinar by Cato Networks @ 1 : 00 PM EST
Aug
23
The 3 Pillars of Data Protection: Detect, Prevent, Sustain
Webinar by Varonis @ 2 : 00 PM EST
Aug
23
Incident Response – The Keys to Improving Response to a Cyber Security Incident
Webinar by Hitachi Systems Security @ 2 : 00 PM EST
Aug
23
How to Investigate Malicious Domains using DomainTools and ThreatConnect
Webinar by ThreatConnect @ 1 : 00 PM EST
Aug
24
Incident Response: Best practices to manage cyber breaches
Webinar by Thycotic @ 11 : 00 AM EST
Aug
25
Visualize Your Threat Landscape on a Global Scale
Webinar by Akamai Technologies @ 11 : 00 AM EST
Aug
30
NIST Updates Are Coming, So What is the Impact?
Webinar by Tripwire @ 2 : 00 PM EST
Aug
30
How to Talk to Your Management about IT Security
Webinar by PhishMe, Inc. @ 1 : 00 PM EST
Aug
31
CPE Credit Webinar: Exploring Email: The #1 Threat Vector
Webinar by Talos @ 1 : 00 PM EST
Sep
07
What Every Agency Head Must Know About Executive Order 13800
Webinar by Akamai Technologies @ 2 : 00 PM EST
View more events

Interested in promoting your company's event?

Our Revolution

We believe Cyber Security training should be free, for everyone, FOREVER. Everyone, everywhere, deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is a free community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

Cybrary On The Go

Get the Cybrary app for Android for online and offline viewing of our lessons.

Get it on Google Play
 

Support Cybrary

Donate Here to Get This Month's Donor Badge

 
Skip to toolbar
Cybrary works best if you switch to our Android-friendly app
Continue

We recommend always using caution when following any link

Are you sure you want to continue?

Continue
Cancel