exam questions

Exam CSSLP All Questions

View all questions & answers for the CSSLP exam

Exam CSSLP topic 2 question 20 discussion

Actual exam question from ISC's CSSLP
Question #: 20
Topic #: 2
[All CSSLP Questions]

Which of the following security issues does the Bell-La Padula model focus on?

  • A. Authorization
  • B. Confidentiality
  • C. Integrity
  • D. Authentication
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
The Bell-La Padula model is a state machine model used for enforcing access control in large organizations. It focuses on data confidentiality and access to classified information, in contrast to the Biba Integrity model, which describes rules for the protection of data integrity. In the Bell-La Padula model, the entities in an information system are divided into subjects and objects. The Bell-La Padula model is built on the concept of a state machine with a set of allowable states in a computer network system. The transition from one state to another state is defined by transition functions. The model defines two mandatory access control (MAC) rules and one discretionary access control (DAC) rule with three security properties: 1.The Simple Security Property: A subject at a given security level may not read an object at a higher security level (no read-up). 2.The *-property (star-property): A subject at a given security level must not write to any object at a lower security level (no write-down). The *-property is also known as the Confinement property. 3.The Discretionary Security Property: It uses an access matrix to specify the discretionary access control.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
74gjd_37
5 months, 2 weeks ago
Selected Answer: B
The Bell-La Padula model focuses on maintaining confidentiality in information systems by controlling access to classified information. Therefore, the correct answer is B. Confidentiality.
upvoted 1 times
74gjd_37
5 months, 2 weeks ago
The Bell-La Padula model is a security model designed to protect the confidentiality of information in computer systems. It was developed by David Bell and Len La Padula in 1973, primarily for use by the United States Department of Defense. The model consists of three elements: subjects, objects, and labels. Subjects are entities that can access objects, such as users or processes. Objects are data resources that need to be protected from unauthorized access or modification, such as files or databases. Labels define the security levels assigned to both subjects and objects. In the Bell-La Padula model, each user is assigned a clearance level based on their job requirements and responsibilities. Each object also has a classification level based on its sensitivity or importance.
upvoted 1 times
74gjd_37
5 months, 2 weeks ago
The model operates under two primary rules: The Simple Security Property - This rule ensures that no subject at one security level should read data from an object at a higher security level. The *-Property (Star Property) - This rule specifies that no subject should be able to write data with lower classification into an object with higher classification. Overall, the Bell-La Padula model seeks to maintain confidentiality by preventing unauthorized disclosure of sensitive information within IT systems while allowing authorized access only if deemed necessary according to predefined policies defined in terms of classifications like top secret/confidential/secret etc., clearances bestowed upon different individual actors/entities involved in handling any type/classification/specific piece(s)of information/data/equipment/systems/components/etc
upvoted 1 times
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago