1
Q
DAC vs. MAC
A
DAC the user can decide how it is shared
- cannot control information flow
- employer should decide how to handle sensitive data (sometimes)
MAC addresses these problems
2
Q
Information flow problem
A
User a gives access to user b, user b gives access to user c
Files can be copied to get around security
Prevent with MAC
3
Q
Access control list implementation
A
ACL is list of who can access file on what level
Each resource looks like a file
Each file has owner (UID) group, and world
Set read write execute for each
Only owner can change permissions
InfoSec
flashcards
Decks in class (8)
# Cards
