Open Systems Interconnection (OSI) Layers

April 3, 2011 By Mitchell Rowton 3 Comments

CISSP OSI LayersThe Open Systems Interconnection (OSI) model has seven layers that define network communication. For the CISSP exam, you need to understand the order of the layers, what layer number is assigned to each layer name, and the function of each layer. Each layer performs a defined function for the layer above it and communicates with its peer layer over an interface.

The OSI model is an ISO standard. Contrary to the acronym, ISO stands for International Organization of Standardization, not International Standards Organizations.

[Read more...]

Filed Under: CISSP Study Guides Tagged With: ,

Bell-LaPadula Access Control Model – Not Just a Funny Name

April 2, 2011 By Mitchell Rowton 3 Comments

Bell La-PadulaThe Bell-LaPadula model is used to enforce access control within the government and military. It was developed by David Elliott Bell and Leonard J. LaPadula, hence the funny name. The Bell-LaPadula model focuses on confidentiality. While the formal model may not be applicable for most uses, the terminology and concepts are still important to passing the CISSP exam. As you review the model, think of the military uses of clearance levels, it will make understanding easier.

Unclassified < Confidential < Secret < Top Secret

In a nutshell, the Bell-LaPadula model prevents a user with a Secret clearance from viewing a Top Secret document (no read up). It also prevents a user from putting Top Secret information within a Secret document (no write down). In this model, the entities are divided into subjects and objects. Think of subjects as users and objects as computers or documents. To determine whether access is allowed, the clearance of a subject is compared to the classification of the object and a determination is made as to whether the subject is authorized for the specific access mode.

[Read more...]

Filed Under: CISSP Study Guides Tagged With: ,