LOMAC
   HOME

TheInfoList



Click Here for Items Related To - LOMAC
OR:
LOMAC on:   [Wikipedia]   [Google]   [Amazon]

Low Water-Mark Mandatory Access Control (LOMAC) is a Mandatory Access Control model which protects the integrity of system objects and subjects by means of an information flow policy coupled with the subject demotion via floating labels. In LOMAC, all system subjects and objects are assigned integrity labels, made up of one or more hierarchical grades, depending on their types. Together, these label elements permit all labels to be placed in a partial order, with information flow protections and demotion decisions based on a dominance operator describing the order.


Implementations

* In
FreeBSD FreeBSD is a free-software Unix-like operating system descended from the Berkeley Software Distribution (BSD). The first version was released in 1993 developed from 386BSD, one of the first fully functional and free Unix clones on affordable ...
, the Biba model is implemented by the mac_lomac MAC policy. * In
Linux Linux ( ) is a family of open source Unix-like operating systems based on the Linux kernel, an kernel (operating system), operating system kernel first released on September 17, 1991, by Linus Torvalds. Linux is typically package manager, pac ...
, there is a project that attempts to implement LOMAC policy.


See also

*
Multi-Level Security Multilevel security or multiple levels of security (MLS) is the application of a computer system to process information with incompatible classifications (i.e., at different security levels), permit access by users with different security clearanc ...
— MLS *
Mandatory Access Control In computer security, mandatory access control (MAC) refers to a type of access control by which a secured environment (e.g., an operating system or a database) constrains the ability of a ''subject'' or ''initiator'' to access or modify on an ' ...
— MAC * Discretionary Access — DAC * Take-Grant Model * The Clark-Wilson Integrity Model * Graham-Denning Model * Security Modes of Operation


References

* Security Engineering, Ross Anderson ()


External links


The LOMAC project
* Computer security models Computer access control {{linux-stub