A subject cannot write data to a higher integrity level. This prevents low-integrity entities from modifying or spoiling high-integrity assets.
[ Access Request ] | v +--------------------------+ | Policy Enforcement Point | <--- Evaluates Attributes (User, Device, Environment) +--------------------------+ | +--------+--------+ | | [ Allowed ] [ Denied ] | v [ Secure Object ] Attribute-Based Access Control (ABAC) Information Security Models Pdf
: Used primarily in commercial environments, this model ensures data integrity by requiring all modifications to go through authorized programs (well-formed transactions) and enforcing Separation of Duties . A subject cannot write data to a higher integrity level
A subject cannot call upon or execute processes of a higher integrity level. Information Security Models Pdf
Implementing these models requires a holistic approach, often combining them with broader types of security:
A user at a specific clearance level cannot read data classified at a higher level. For example, a user with "Secret" clearance cannot read "Top Secret" documents.