Synonyms
Related Concepts
Definition
The Bell-LaPadula Confidentiality Model is a state machine–based multilevel security policy. The model was originally designed for military applications. State machine models define states with current permissions and current instances of subjects accessing the objects. The security of the system is satisfied by the fact that the system transitions from one secure state to the other with no failures.
The model uses a layered classification scheme for subjects and a layered categorization scheme for objects. The classification level of the objects and the access rights of the subjects determine which subject will have authorized access to which object. This layered structure forms a lattice for manipulating access.
The Bell-LaPadula Confidentiality Model is a static model, which assumes static states. It implements mandatory access control (MAC) and discretionary access control (DAC)...
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Recommended Reading
LaPadula L (1973) Secure computer systems: mathematical foundations, MITRE technical report 2547, vol. I titled “Secure Computer Systems: Mathematical Foundations” by D. Elliott Bell and Leonard J. LaPadula dated 1 March
Fischer-Hübner S: IT-Security and Privacy: Design and Use of Privacy-Enhancing Security Mechanisms, Springer, 2001
Zelkowitz M. V.: Advances in Computers, Volume 55, Academic Press, 2001
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2011 Springer Science+Business Media, LLC
About this entry
Cite this entry
Cankaya, E.C. (2011). Bell-LaPadula Confidentiality Model. In: van Tilborg, H.C.A., Jajodia, S. (eds) Encyclopedia of Cryptography and Security. Springer, Boston, MA. https://doi.org/10.1007/978-1-4419-5906-5_773
Download citation
DOI: https://doi.org/10.1007/978-1-4419-5906-5_773
Publisher Name: Springer, Boston, MA
Print ISBN: 978-1-4419-5905-8
Online ISBN: 978-1-4419-5906-5
eBook Packages: Computer ScienceReference Module Computer Science and Engineering