Which of the following access control models are used in the commercial sector? Each correct
answer represents a complete solution. Choose two.
A.
Biba model
B.
Clark-Biba model
C.
Clark-Wilson model
D.
Bell-LaPadula model
Explanation:
The Biba and Clark-Wilson access control models are used in the commercial
sector. The Biba model is a formal state transition system of computer security policy that
describes a set of access control rules designed to ensure data integrity. Data and subjects are
grouped into ordered levels of integrity. The model is designed so that subjects may not corrupt
data in a level ranked higher than the subject, or be corrupted by data from a lower level than the
subject. The Clark-Wilson security model provides a foundation for specifying and analyzing an
model as Clark-Biba.