<html>
<head>
<style>
.hmmessage P
{
margin:0px;
padding:0px
}
body.hmmessage
{
font-size: 10pt;
font-family:Verdana
}
</style>
</head>
<body class='hmmessage'>
<FONT size=2><FONT face=Giovanni-Book size=2><FONT face=Giovanni-Book size=2>
<BLOCKQUOTE dir=ltr style="MARGIN-RIGHT: 0px">
<P align=left> </P>
<P align=left>Shon Harris, Fourth Edition page 345</P>
<P align=left>" Let’s say that Tom and Kathy are both working on a multilevel mainframe at the</P>
<P align=left>same time. Tom has the security clearance of secret and Kathy has the security clearance</P>
<P align=left>of top secret. Since this is a central mainframe, the terminal Tom is working at has the</P>
<P align=left>context of secret, and Kathy is working at her own terminal, which has a context of top</P>
<P align=left>secret. This model states that nothing Kathy does at her terminal should directly or indirectly</P>
<P align=left>affect Tom’s domain (available resources and working environment). So whatever</P>
<P align=left>commands she executes or whichever resources she interacts with should not affect</P>
Tom’s experience of working with the mainframe in any way."<BR>
<BR>
HTP :)<BR>
Besr Regards,<BR>
Ashraf Amin<BR></BLOCKQUOTE></FONT></FONT>
<BR><BR> <BR><BR><BR><BR><BR></FONT><BR><BR><BR>
<BR>
<HR id=stopSpelling>
Date: Sun, 28 Jun 2009 06:34:16 -0400<BR>From: belinda.foster@gmail.com<BR>To: cisspstudy@cccure.org<BR>Subject: Re: [Cisspstudy] Security Models<BR><BR>
<DIV>Ashraf and Nicolas --</DIV>
<DIV> </DIV>
<DIV>I am totally lost........Would the Noninterference Model allow Don to work on the same production code that the staff is currently using, and the staff wouldn't be affected by his changes?</DIV>
<DIV> </DIV>
<DIV>Please help me understand.</DIV>
<DIV> </DIV>
<DIV>Thanks,<BR><BR></DIV>
<DIV class=EC_gmail_quote>On Sun, Jun 28, 2009 at 12:56 AM, Ashraf Amin <SPAN dir=ltr><<A href="mailto:ashraf_amin01@hotmail.com">ashraf_amin01@hotmail.com</A>></SPAN> wrote:<BR>
<BLOCKQUOTE class=EC_gmail_quote style="PADDING-LEFT: 1ex; BORDER-LEFT: #ccc 1px solid">
<DIV>
<BLOCKQUOTE dir=ltr style="MARGIN-RIGHT: 0px">
<FONT color=#000000>Noninterference</FONT><BR><BR>---<BR>Best Regards,<BR>Ashraf Amin<FONT size=2><BR><BR><BR> <BR><BR><BR><BR><BR></FONT></BLOCKQUOTE><BR><BR><BR> <BR>
<HR>
Date: Fri, 26 Jun 2009 08:21:29 -0400<BR>From: <A href="mailto:belinda.foster@gmail.com">belinda.foster@gmail.com</A><BR>To: <A href="mailto:cisspstudy@cccure.org">cisspstudy@cccure.org</A><BR>Subject: Re: [Cisspstudy] Security Models
<DIV>
<DIV></DIV>
<DIV class=h5><BR><BR>
<DIV>Nimal --</DIV>
<DIV> </DIV>
<DIV>Don should not be developing/working on code that's in production. Period. If I had to decide on a certain security model, I'd fail this question for sure because him working on code that staff members are affected by is a MAJOR distractor within this paragraph.</DIV>
<DIV> </DIV>
<DIV>Belinda.<BR><BR></DIV>
<DIV>On Thu, Jun 25, 2009 at 5:10 PM, Nimal Gunarathna <SPAN dir=ltr><<A href="mailto:ng949@yahoo.com">ng949@yahoo.com</A>></SPAN> wrote:<BR>
<BLOCKQUOTE style="PADDING-LEFT: 1ex; BORDER-LEFT: #ccc 1px solid">
<TABLE cellSpacing=0 cellPadding=0 border=0>
<TBODY>
<TR>
<TD vAlign=top>
<DIV>Hi,</DIV>
<DIV> </DIV>
<DIV>This question is from <SPAN>Shon</SPAN> H's CISSP V4 Quiz Engine. I <SPAN>immediatly</SPAN> thought that this fall</DIV>
<DIV>into a certain security model based on a key statement here but I was wrong. Anyway you guys could dissect this ... </DIV>
<DIV> </DIV>
<DIV><FONT face=Arial size=2>Don is a senior manager of an architectural firm. He has just found out that a key contract was renewed, allowing the company to continue developing an operating system that was idle for several months. Excited to get started, Don begins work in the operating system privately, but cannot tell his staff until the news is announced publicly in a few days. However, as Don begins making changes in the software, various staff members notice changes in their connected systems, even though they work in a lower-security level. What kind of model could be used to ensure this does not happen?</FONT></DIV><A href="mailto:cisspstudy@cccure.org"></A></TD></TR></TBODY></TABLE><BR>_______________________________________________<BR>cisspstudy mailing list<BR><A href="mailto:cisspstudy@cccure.org">cisspstudy@cccure.org</A><BR><A href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</A><BR><BR></BLOCKQUOTE></DIV><BR><BR></DIV></DIV>
<DIV class=EC_hm>
<HR>
Upgrade to Internet Explorer 8 Optimised for MSN. <A href="http://extras.uk.msn.com/internet-explorer-8/?ocid=T010MSN07A0716U">Download Now</A></DIV></DIV><BR>_______________________________________________<BR>cisspstudy mailing list<BR><A href="mailto:cisspstudy@cccure.org">cisspstudy@cccure.org</A><BR><A href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</A><BR><BR></BLOCKQUOTE></DIV><BR><br /><hr />View your Twitter and Flickr updates from one place – <a href='http://clk.atdmt.com/UKM/go/137984870/direct/01/' target='_new'>Learn more!</a></body>
</html>