This preview has intentionally blurred sections. Sign up to view the full version.View Full Document
Unformatted text preview: 12/19/2010 1 Unit 6: Integrity Models Unit 6: Integrity Models Part 2 Click Here to Start Audio Clark and Wilson Integrity Clark and Wilson Integrity c Clark and Wilson - “1987 Symposium on Security and Privacy” c Claim that Integrity is More Important than Secrecy in Commercial Systems c Motivated by Accounting Rules C&W Basic Ideas C&W Basic Ideas c Unconstrained vs. Constrained Data (CDI) c CDI only manipulated by well- formed transformations. c Users collaborate to manipulate data or collude to breach security. c All transformations must be logged. 12/19/2010 2 Accounting Principles Accounting Principles c Independent Audit ◦ Verifies Internal Consistency ◦ Verifies External Reality c Double Entry Bookkeeping Separation of Duty Separation of Duty c Defining user roles so that no one user can commit a significant error without detection (e.g., order, accept goods, and pay) c Requires collusion....
View Full Document
- Spring '11
- Debits And Credits, Verification and validation, TP, delivery form