POLICY GROUP MEETING
November 18, 1998
10:00 11:00
3085 ENG II

In attendance:
Karl Levitt, Prekumar Devanbu, Brant Hashii, Jim Hoagland, Jeff Rowe, Dan Zerkle

TOPICS:
Dan Zerkle finishes talk on ADAGE (see handout)



Questions:
Is delegation based on properties of a group?  Answer: Yes.
Roles are explicitly defined at the lower level; none at the higher level.

Is it possible to define your own constraints?
Answer:  Not at the user interface, but it is possible to specify at the lower level using Boolean constraints.

Functions/Categories
Add; Remove; Modify; List; Show (attributes); Query (search); Help; Exit

Example (Case Studies)

Bell and LaPadula Model

Legend:  P=Principal, A=Action, T=Target, C=Constraints, DOM=dominates; SA=system administrator; O=Object

P=ALL, A=READ, T=ALL, (C=LABELS DOM LABELO)
P=ALL, A=WRITE, T=ALL, (C=LABELO DOM LABELS)
P=SA, A=SA, T=SA, C=VOID
P=ALL, A=READ, T=ALL-SA, (C=LABELS DOM LABELO)
P=ALL, A=WRITE, T=ALL-SA, (C=LABELO DOM LABELS)

Chinese Wall

P=ALL, A=READ, T=ALL, C=THIS NEVERUSED ANYTARGET (COCI3) OR THIS HASDONE READ TO TARGET

(Rule 1) and (P=ALL, A=WRITE, T=ALL, C=THIS NEVERDID READ TO ANYTARGET (COIC))