Lattice-based access control: Difference between revisions

Browse history interactively

← Previous edit

Content deleted Content added

VisualWikitext

Revision as of 10:57, 23 August 2016 edit Serge10duke (talk \| contribs) 184 edits →See also: Added new related wiki pages and listed items in two columns. ← Previous edit		Latest revision as of 12:40, 9 July 2024 edit undo Captain Alarmist (talk \| contribs) 293 edits No edit summary Tag: Visual edit
(10 intermediate revisions by 8 users not shown)
Line 1: {{Inline citations\|date=July 2024}} In [[computer security]], '''lattice-based access control''' ('''LBAC''') is a complex [[access control]] model based on the interaction between any combination of '''objects''' (such as resources, computers, and applications) and '''subjects''' (such as individuals, groups or organizations). Line 5 ⟶ 7: Mathematically, the security level access may also be expressed in terms of the lattice (a [[partial order]] set) where each object and subject have a greatest lower bound (meet) and least upper bound (join) of access rights. For example, if two subjects ''A'' and ''B'' need access to an object, the security level is defined as the meet of the levels of ''A'' and ''B''. In another example, if two objects ''X'' and ''Y'' are combined, they form another object ''Z'', which is assigned the security level formed by the join of the levels of ''X'' and ''Y''. LBAC is also known as a label-based access control (or ''rule-based access control'') restriction as opposed to [[role-based access control]] (RBAC). Lattice based access control models were first formally defined by [[Dorothy E. Denning\|Denning]] (1976); see also Sandhu (1993). == See also ==▼ {{columns-list\|2colwidth=30em\|▼ * [[Access control list]]▼ * [[~~Context~~Attribute-based access control]] (~~CBAC~~ABAC)▼ * [[~~Bell-La Padula~~Bell–LaPadula model]]▼ * [[Biba Model]]▼ * [[Capability-based security]]▼ * [[Computer security model]]▼ * [[~~Graph~~Context-based access control]] (~~GBAC~~CBAC)▼ * [[Discretionary access control]] (DAC)▼ * [[~~Role~~Graph-based access control]] (~~RBAC~~GBAC)▼ * [[Mandatory access control]] (MAC)▼ * [[Organisation-based access control]] (OrBAC)▼ * [[Risk-based authentication]]▼ * [[~~RSBAC\|Rule-set~~Role-based access control]] (~~RSBAC~~RBAC)]]▼ * [[RSBAC\|Rule-set-based access control (RSBAC)]] }}▼ == References == Line 32 ⟶ 52: \| doi = 10.1109/2.241422 \| url=http://www.winlab.rutgers.edu/~trappe/Courses/AdvSec05/access_control_lattice.pdf}} ▲== See also == ▲{{columns-list\|2\| ▲* [[Access control list]] * [[Attribute-Based Access Control]] (ABAC) ▲* [[Context-based access control]] (CBAC) ▲* [[Discretionary access control]] (DAC) ▲* [[Graph-based access control]] (GBAC) ▲* [[Mandatory access control]] (MAC) ▲* [[Organisation-based access control]] (OrBAC) ▲* [[Role-based access control]] (RBAC) ▲* [[RSBAC\|Rule-set-based access control (RSBAC)]] ▲* [[Capability-based security]] * [[Location-based authentication]] ▲* [[Risk-based authentication]] ▲* [[Bell-La Padula model]] ▲* [[Biba Model]] ▲* [[Computer security model]] ▲}} [[Category:Computer security models]] Line 57 ⟶ 58: {{~~Compu~~Computer-~~lang~~security-stub}}