Take-grant protection model

The take-grant protection model is a formal model used in the field of computer security to establish or disprove the safety of a given computer system that follows specific rules. It shows that for specific systems the question of safety is decidable in linear time, which is in general undecidable. The model represents a system as directed graph, where vertices are either subjects or objects. The edges between them are labeled and the label indicates the rights that the source of the edge has over the destination. Two rights occur in every instance of the model: "take" and "grant". They play a special role in the graph rewriting rules describing admissible changes of the graph.

There is a total of four such rules: The "take rule" allows a subject to take rights of another subject, while the "grant rule" allows a subject to grant own rights to another subject. The "create rule" allows every subject to create new nodes, while the "remove rule" allows a subject to remove rights it has over another object.

Using the rules of the take-grant protection model, one can reproduce in which states a system can change, with respect to the distribution of rights. Therefore one can show if rights can leak with respect to a given safety model.

References

* cite journal
author = Lipton, Richard J.
coauthors = Snyder, Lawrence
title = A Linear Time Algorithm for Deciding Subject Security
journal = Journal of the ACM
volume = 24
issue = 3
pages = 455–464
date = 1977
publisher = Addison-Wesley
url = http://www.cs.nmt.edu/~doshin/t/s06/cs589/pub/2.JLS-TG.pdf
format = PDF

* cite book
last = Bishop | first = Matt
title = Computer security: art and science
publisher = Addison-Wesley
year = 2004


Wikimedia Foundation. 2010.

Look at other dictionaries:

  • Bell–LaPadula model — The Bell LaPadula Model (abbreviated BLP) is a state machine model used for enforcing access control in government and military applications.[1] It was developed by David Elliott Bell and Leonard J. LaPadula, subsequent to strong guidance from… …   Wikipedia

  • Computer security model — A computer security model is a scheme for specifying and enforcing security policies. A security model may be founded upon a formal model of access rights, a model of computation, a model of distributed computing, or no particular theoretical… …   Wikipedia

  • Bell-LaPadula model — The Bell LaPadula Model is a state machine model used for enforcing access control in government and military applications. [cite book|last=Hansche|first=Susan|coauthors=John Berti, Chris Hare|title=Official (ISC)2 Guide to the CISSP… …   Wikipedia

  • Social Protection — ▪ 2006 Introduction With medical costs skyrocketing and government programs scaled back, citizens bore more responsibility for their health care costs; irregular migration, human trafficking, and migrant smuggling posed challenges for… …   Universalium

  • Patient Protection and Affordable Care Act — Full title The Patient Protection and Affordable Care Act. Acronym PPACA Colloquial name(s) Affordable Care Act, Healthcare Insurance Reform, Obamacare, Healthcare Reform Enacted by the …   Wikipedia

  • New Model Army — For the band, see New Model Army (band). The Soldier s Catechism: rules, regulations and drill procedures of the New Model Army. The New Model Army of England was formed in 1645 by the Parliamentarians in the English Civil War, and was disbanded… …   Wikipedia

  • Personal Information Protection and Electronic Documents Act — The Personal Information Protection and Electronic Documents Act (abbreviated PIPEDA or PIPED Act) is a Canadian law relating to data privacy. It governs how private sector organizations collect, use and disclose personal information in the… …   Wikipedia

  • Ulysses S. Grant — Infobox President name=Ulysses S. Grant nickname= Unconditional Surrender Grant nationality=American order=18th President of the United States term start=March 4, 1869 term end=March 4, 1877 predecessor=Andrew Johnson successor=Rutherford B.… …   Wikipedia

  • Cities for Climate Protection program — The Cities for Climate Protection program (CCP) is one of three major global transnational municipal networks aimed at reducing urban greenhouse gas emissions. Established in 1990 by the International Union of Local Authorities and the United… …   Wikipedia

  • Intellectual property protection of typefaces — Intellectual property law Primary rights Copyright · authors rights  …   Wikipedia

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”

We are using cookies for the best presentation of our site. Continuing to use this site, you agree with this.