Conflicting information across different study materials.

OodaloopOodaloop Registered Users Posts: 2 ■□□□□□□□□□
in SSCP
Was wondering if I could get some input to determine which study material has the correct answer to a couple of questions.
  • What Security Models can be considered Information Flow models?
One of my study materials lists: Noninterference, Graham-Denning, & Brewer & Nash
Another study material lists: Bell-LaPadula, Biba, & Brewer & Nash

Which one is correct?
  • Which Security Model prevents Covert Channels?
One of my study materials lists: Information Flow
Another study material lists: Noninterference

Which one is correct?
· Share on FacebookShare on Twitter

Comments

  • swildswild Member Posts: 828
    (1) A better question to ask is:
    • What Security Models can NOT be considered Information Flow models?
    Define Security Models.
    Define Information Flow.

    This is a basic concept that you need to learn so I will not give you a flat answer.

    (2) This is a flawed question. Technically, any Information Flow model is designed to prevent Covert Channels. However, there will always be covert channels. Noninterference has stricter guidelines regarding covert channels and is therefore a decent example.
    · Share on FacebookShare on Twitter
  • OodaloopOodaloop Registered Users Posts: 2 ■□□□□□□□□□
    swild wrote: »
    (1) A better question to ask is:
    • What Security Models can NOT be considered Information Flow models?
    Define Security Models.
    Define Information Flow.

    This is a basic concept that you need to learn so I will not give you a flat answer.

    Oh, I already believe the correct answer to be Bell-LaPadula, Biba, Brewer Nash. I was just wanting confirmation. :)
    · Share on FacebookShare on Twitter
Sign In or Register to comment.