Conflicting information across different study materials.

Was wondering if I could get some input to determine which study material has the correct answer to a couple of questions.

What Security Models can be considered Information Flow models?

One of my study materials lists: Noninterference, Graham-Denning, & Brewer & Nash
Another study material lists: Bell-LaPadula, Biba, & Brewer & Nash

Which one is correct?

Which Security Model prevents Covert Channels?

One of my study materials lists: Information Flow
Another study material lists: Noninterference

Which one is correct?

Find more posts tagged with

Comments

swild

(1) A better question to ask is:

What Security Models can NOT be considered Information Flow models?

Define Security Models.
Define Information Flow.

This is a basic concept that you need to learn so I will not give you a flat answer.

(2) This is a flawed question. Technically, any Information Flow model is designed to prevent Covert Channels. However, there will always be covert channels. Noninterference has stricter guidelines regarding covert channels and is therefore a decent example.

Oodaloop

swild wrote: »

(1) A better question to ask is:
What Security Models can NOT be considered Information Flow models?

Define Security Models.
Define Information Flow.

This is a basic concept that you need to learn so I will not give you a flat answer.

Oh, I already believe the correct answer to be Bell-LaPadula, Biba, Brewer Nash. I was just wanting confirmation.