1answer.
Ask question
Login Signup
Ask question
All categories
  • English
  • Mathematics
  • Social Studies
  • Business
  • History
  • Health
  • Geography
  • Biology
  • Physics
  • Chemistry
  • Computers and Technology
  • Arts
  • World Languages
  • Spanish
  • French
  • German
  • Advanced Placement (AP)
  • SAT
  • Medicine
  • Law
  • Engineering
Fed [463]
3 years ago
5

You work in a classified environment where Bell LaPadula MLS (Multilevel Security) model is employed. Your clearance is "SECRET"

(on a scale TOP SECRET > SECRET > CLASSIFIED > UNCLASSIFIED). Your company is furnished with a shared and synchronized cloud drive, where: >>A user, any clearance, can send a document, accessible by any computer in the same network, no matter the clearance. >>The document can be printed by any employees, using a computer with the right clearance. >>All the computers connected to the same network can see the documents in the drive. >>The user's computer clearance is the same as the user's clearance. >>The document is added to the print queue of the station without any delay. >>The classification of the document to print is the same as the clearance of the computer used to upload it. Please, describe a potential covert channel to disclose SECRET documents to someone with CLASSIFIED clearance. PROBLEM: If you print SECRET documents, you go directly to jail, without passing GO. The system, in fact, checks any document added to the drive. If documents with clearance higher than UNCLASSIFIED are printed, it raises an alarm.
Computers and Technology
1 answer:
kumpel [21]3 years ago
7 0

Answer:

The answer is by using a covert channel like shared memory objects such as files, directories,messages, etc since both  the user and the sender of the document are on same network of the company.

Explanation:

The Bell LaPadula MultiLevel Security model was a security policy developed by Bell and LaPadula in 1973 in response to a security issue raised by the US Air Force regarding file-sharing mainframe computers . Actually, many people with networked systems have realized by early 1970s that the protection purportedly offered by many commercial operating systems was poor, and wa not getting better any time soon. This was observed when it was noticed that as one operating system error was fixed, some other vulnerability would be discovered. There was also the constant worry that various unskilled users would discover loopholes in the operating system during usage and use them to their own advantage.

 Information release may take place via shared memory objects such as files, directories, messages, and so on. Thus, a Trojan Horse acting on behalf of a user could release user-private information using legitimate operating system requests. Although developers can build various mechanisms within an operating system to restrict the activity of programs (and Trojan Horses) operating on behalf of a user  , there is no general way, short of implementing nondiscretionary policy models, to restrict the activity of such programs. Thus, given that discretionary models cannot prevent the release of sensitive information through legitimate program activity, it is not meaningful to consider how these programs might release information illicitly by using covert channels.

For example, for someone with higher integrity level (SECRET) to send an accounts payable application to a user, if the untrusted accounts payable application contains a Trojan Horse, the Trojan Horse program could send a (legal) message to the said user process running at a lower integrity level (CONFIDENTIAL), thereby initiating the use of a covert channel. In this covert channel, the Trojan Horse is the receiver of (illegal) lower integrity-level input and the user process is the sender of this input.

You might be interested in
please help, touch pad and trackpad are the same thing and the other answers don’t really make sense to me..
WINSTONCH [101]

Answer:

The answer to the problem is B

8 0
2 years ago
You can use _____ to track the state of each user in the application.
anastassius [24]

Answer:

session state

Explanation:

Session state in the context of NET is a method keep track of a user session. Session states allow a developer to store data about a user as he or she navigates through ASP.NET web pages.

3 0
3 years ago
What is the minimum number of different résumé formats that an individual should have prepared?
Degger [83]

Answer:

The minimum number of different resumes formats that an individual should have prepared is b. 2 The first should be a condensed format. A good resume should only require one page. However, when things get too cramped in a single page, a two-page format can be used. A two-page format can be used to provide more details about yourself.

Explanation:

5 0
2 years ago
How is a computer and a iphone different
MaRussiya [10]
A computer is a big screen and iphone is a handheld device
6 0
3 years ago
Question 8 (3 points) Which of the following is an external factor that affects the price of a product? Choose the answer.
icang [17]

Answer: tax

Explanation: could effect the cost of items because the tax makes the price higher

oh sorry i did not see the whole question

this is the wrong awnser

3 0
3 years ago
Read 2 more answers
Other questions:
  • What does Intel mean in this phrase(collect all intel).
    9·2 answers
  • When sociologists say that it is difficult to predict all the results of social change, what are they referring to?
    5·1 answer
  • Which of the following is a feature that is in the Excel program and NOT in Word? (Select all that apply.)
    14·1 answer
  • Name 3 examples of operating system software that are not Windows based.
    5·1 answer
  • The computer has had far-reaching effects on our lives.how has the computer effected your life?
    8·1 answer
  • 8.13 LAB: Elements in a range Write a program that first gets a list of integers from input. That list is followed by two more i
    8·1 answer
  • Explain in your own words how remote-access Trojans (RATs) work. How can these be used by attackers? How would a network adminis
    10·1 answer
  • How are special characters added to a Word document? Check all that apply.
    6·2 answers
  • What is the output of the following program?
    8·1 answer
  • When right-clicking an object, a ____ menu appears, which contains frequently used commands related to the object.
    7·1 answer
Add answer
Login
Not registered? Fast signup
Signup
Login Signup
Ask question!