Which of the following statements relating to the Bell-LaPadula security model is FALSE (assuming the Strong
Star property is NOT being used)?

A.
A subject is not allowed to read up.

B.
The *- property restriction can be escaped by temporarily downgrading a high level subject.

C.
A subject is not allowed to read down.

D.
It is restricted to confidentiality.

Explanation:
The Bell LaPadula model does not include a rule that prevents a subject from reading down.
Incorrect Answers:
A: A subject is not allowed to read up is a property of the ‘simple security rule’ of Bell LaPadula model.
B: The *- property restriction can be escaped by temporarily downgrading a high level subject can be escaped
by temporarily downgrading a high level subject or by identifying a set of trusted objects which are permitted to
violate the *-property as long as it is not in the middle of an operation.
D: It is restricted to confidentiality as it is a state machine model that enforces the confidentiality aspects of
access control.

Harris, Shon, All In One CISSP Exam Guide, 6th Edition, McGraw-Hill, 2013, pp. 369-372