LATTICE-BASED ACCESS-CONTROL MODELS

Lattice-based access control models were developed in the early 1970s to deal with the confidentiality of military information. Security researchers soon realized that these models were useful in many situations where information flow was of concern. Denning's axioms identified the precise circumstances under which these models were applicable. In the late 1970s and early 1980s, researchers applied these models to certain integrity concerns. Recently, application of the models to the Chinese Wall policy, a confidentiality policy unique to the commercial sector, was demonstrated. For the most part, the commercial sector has ignored lattice-based controls, perhaps due to their genesis in military confidentiality policies. At the other extreme, some in the military and government sectors have touted lattice-based controls as a panacea for all information security concerns. This article provides a balanced perspective on lattice-based access control models. The models are presented as a very important ingredient of information security, applicable to confidentiality and integrity concerns in the military and commercial sectors. At the same time, the author identifies the limitations of the models. They are very useful but should not be viewed as a complete solution - even for confidentiality, let alone integrity.