(, Discretionary Access Control; DAC), , :
;
.
f1 | f2 | f3 | ... | |
r | w | rw | ||
... |
() .
-
-
, " , ", .
(Mandatory Access Control; MAC), :
;
, ;
(security clearance), , .
.
, .
-
:
: >=
: <=, : MK>=.
. , , , . , .
, . , .
, , , ..
II.4.2.
(; Trusted Computing Base; TCB) - , .
|
|
, - , .
, , . , .
.
II.4.3. . . .
(security kernel)
, , .
(reference monitor) - .
.
.
(security database) , . , (. 1.4.1.).
:
1. , ( );
2. .
:
;
, , ;
;
.
II.4.4. .
, , :