[CCCure CISSP] Help

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view
|

[CCCure CISSP] Help

Jim Buchanan
On Mar 26, 2014 10:56 PM, <[hidden email]> wrote:
Send CISSPstudy mailing list submissions to
        [hidden email]

To subscribe or unsubscribe via the World Wide Web, visit
        http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
or, via email, send a message with subject or body 'help' to
        [hidden email]

You can reach the person managing the list at
        [hidden email]

When replying, please edit your Subject line so it is more specific
than "Re: Contents of CISSPstudy digest..."


Today's Topics:

   1. Re: access control question (Pushpender Maan)
   2. Re: access control question (BobbyJoe)
   3. Re: access control question ([hidden email])


----------------------------------------------------------------------

Message: 1
Date: Wed, 26 Mar 2014 23:48:06 +0530
From: Pushpender Maan <[hidden email]>
To: The CISSP Study Mailing list <[hidden email]>
Subject: Re: [CCCure CISSP] access control question
Message-ID:
        <[hidden email]>
Content-Type: text/plain; charset="iso-8859-1"

Hello All,
This is what my take on this question:

1) A subject with Execute priviliege -- Execution is more related to
program executable and hence should not be of much concern while speaking
of information flow.
2) A subject with read priviliege -- This is in context of Information
confidentiality
3) A subject with delete priviliege -- This is in context of information
Integrity
4) A subject with append priviliege -- This is also in context of
information Integrity

-- Now when we discuss, information flow, Confidentiality and Integrity are
of greater concern. Out of three options (2,3 and 4) delete can be left as
read, delete and append are directly affecting the confidentiality and
Integrity of the information.

-- MAC is the preferred access control system when information
classification and labeling is used and where neither confidentiality
or Integrity can be comprised.

-- As DAC is used here, this information must be of a system where you have
to choose out of confidentiality and Integrity. And confidentiality is
always given more weight over Integrity. Hence the Read privilege.. ( As
confidentiality is compromised if copy of information can be leaked.)

Regards,
Pushpender Maan


On Wed, Mar 26, 2014 at 11:00 PM, abid James <
[hidden email]> wrote:

> Hello Mr Surya,
>
> Hope you are doing well. Are you in bangalore ?
>
> Regards
> Sam
>
> ------------------------------
> Date: Thu, 27 Mar 2014 01:00:04 +0800
> From: [hidden email]
> To: [hidden email]
> Subject: Re: [CCCure CISSP] access control question
>
>
> That looks like a tough one. I would have got it wrong as well. May I ask
> you the source of this question? For me the question itself doesn't make
> much sense because people usually don't speak about subjects and clearances
> when discussing the DAC model...
> On 26 Mar 2014 23:41, "abid James" <[hidden email]>
> wrote:
>
> Hello All,
>
>
> In the context of information flow  under DAC, Which poses the greatest
> risk to information system management ?
>
> 1) A subject with Execute priviliege
> 2) A subject with read priviliege
> 3) A subject with delete priviliege
> 4) A subject with append priviliege
>
>
> Answer is read priviliege . However, the explaination given is the read
> priviliege is most problematic  regarding information flow.
> This priviliege allows an subject to create copy of the object in the
> memory.
>
> can anyone explain why read is correct.
>
> _______________________________________________
> You can find the list archive at:
> http://cissp-study.3965.n7.nabble.com/
>
> CISSPstudy mailing list
> [hidden email]
>
> To UNSUBSCRIBE, SUBSCRIBE, or MANAGE your accout visit the link below:
> http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
>
>
> _______________________________________________ You can find the list
> archive at: http://cissp-study.3965.n7.nabble.com/ CISSPstudy mailing
> list [hidden email] To UNSUBSCRIBE, SUBSCRIBE, or MANAGE your
> accout visit the link below:
> http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
>
> _______________________________________________
> You can find the list archive at:
> http://cissp-study.3965.n7.nabble.com/
>
> CISSPstudy mailing list
> [hidden email]
>
> To UNSUBSCRIBE, SUBSCRIBE, or MANAGE your accout visit the link below:
> http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
>
>


--
tension free
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://cccure.org/mailman/private/cisspstudy_cccure.org/attachments/20140326/a25e5c9d/attachment.html>

------------------------------

Message: 2
Date: Wed, 26 Mar 2014 21:55:40 +0300
From: BobbyJoe <[hidden email]>
To: The CISSP Study Mailing list <[hidden email]>
Subject: Re: [CCCure CISSP] access control question
Message-ID:
        <CAHyWFMwq3QmHc=V=bBTZf2EhBA4FMyMwQ2z1SOEKU=[hidden email]>
Content-Type: text/plain; charset="iso-8859-1"

A little security+ birdie told me that under DAC, once a subject gets
access to an object, they can do whatsoever they need to, including share
it with others. Read priv may mean the ability to copy or display the info
to others. Or share the shared printer from their station. I am only trying
to justify the answer, but I don't understand it either.

Bobby
On Mar 26, 2014 7:21 PM, "Ali Khalfan" <[hidden email]> wrote:

> From what I understand, Information-flow control is mainly concerned
> with confidentiality and the propagation of information throughout a
> program.  The only way I can see information being leaked is if he
> information owner under DAC would grant an unauthorized person "read
> privilege", and thus, break the confidentiality.
>
> At least that's what it seems to me.
>
> Ali
>
>
>
> abid James wrote:
> > Hello All,
> >
> >
> > In the context of information flow  under DAC, Which poses the greatest
> > risk to information system management ?
> >
> > 1) A subject with Execute priviliege
> > 2) A subject with read priviliege
> > 3) A subject with delete priviliege
> > 4) A subject with append priviliege
> >
> >
> > Answer is read priviliege . However, the explaination given is the read
> > priviliege is most problematic  regarding information flow.
> > This priviliege allows an subject to create copy of the object in the
> > memory.
> >
> > can anyone explain why read is correct.
> >
> >
> > _______________________________________________
> > You can find the list archive at:
> > http://cissp-study.3965.n7.nabble.com/
> >
> > CISSPstudy mailing list
> > [hidden email]
> >
> > To UNSUBSCRIBE, SUBSCRIBE, or MANAGE your accout visit the link below:
> > http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
> >
>
> _______________________________________________
> You can find the list archive at:
> http://cissp-study.3965.n7.nabble.com/
>
> CISSPstudy mailing list
> [hidden email]
>
> To UNSUBSCRIBE, SUBSCRIBE, or MANAGE your accout visit the link below:
> http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://cccure.org/mailman/private/cisspstudy_cccure.org/attachments/20140326/155a8f94/attachment.html>

------------------------------

Message: 3
Date: Wed, 26 Mar 2014 20:55:19 -0700 (PDT)
From: "[hidden email]" <[hidden email]>
To: The CISSP Study Mailing list <[hidden email]>
Subject: Re: [CCCure CISSP] access control question
Message-ID:
        <[hidden email]>
Content-Type: text/plain; charset="iso-8859-1"

Rest are made up questions.? Doesn't apply.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://cccure.org/mailman/private/cisspstudy_cccure.org/attachments/20140326/0c518592/attachment.html>

------------------------------

Subject: Digest Footer

_______________________________________________
You can search through the mailing list archive at:
http://cissp-study.3965.n7.nabble.com/

CISSPstudy mailing list
[hidden email]

To UNSUBSCRIBE, SUBSCRIBE, or MANAGE your accout visit the link below:
http://cccure.org/mailman/listinfo/cisspstudy_cccure.org


------------------------------

End of CISSPstudy Digest, Vol 69, Issue 37
******************************************

_______________________________________________
You can find the list archive at:
http://cissp-study.3965.n7.nabble.com/

CISSPstudy mailing list
[hidden email]

To UNSUBSCRIBE, SUBSCRIBE, or MANAGE your accout visit the link below:
http://cccure.org/mailman/listinfo/cisspstudy_cccure.org