Mandatory Access Control Presentation

Uploaded by

rahul.nair0306

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PPTX, PDF, TXT or read online on Scribd

100% found this document useful (1 vote)

46 views10 pages

Mandatory Access Control Presentation

Uploaded by

rahul.nair0306

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PPTX, PDF, TXT or read online on Scribd

You are on page 1/ 10

Enhancing Security Through

Rigorous Access Policies

Mandatory
Access Control
(MAC)
Rahul Nair
Introduction to Access Control

 • What is Access Control?

- Mechanism to regulate access to resources.
- Ensures only authorized users perform
permitted actions.

 • Types of Access Control:

- Discretionary Access Control (DAC)
- Mandatory Access Control (MAC)
- Role-Based Access Control (RBAC)
What is Mandatory Access Control
(MAC)?

01 • Definition:
- A strict access control model where access
is based on rules defined by a central
authority.
- Users cannot change access permissions.

02 • Key Features:

- Centralized control.
- Policy-driven access.
- Based on classification levels (e.g.,
confidential, secret, top secret).
How MAC Works

- Subjects: Users, processes, or devices requesting access.

Components:
- Objects: Resources (files, databases, etc.) to be accessed.
- Labels: Security classification for both subjects and objects.

- Central authority assigns labels to subjects and objects.

Process - Access decisions are made by comparing subject and object labels .
Security Labels in MAC

• Examples of
Labels:
- Confidential, Secret, Top
Secret.
- Unclassified, Restricted.

• Rules for Access:

- A user must have an equal or
higher clearance level to access
the resource.
Advantages of MAC
• High Security
01
Prevents unauthorized
access through strict rules.

• Centralized Management
02
Easy to enforce policies
uniformly.

• Useful for Sensitive Data

03
Ideal for military, government,
and critical sectors.
Disadvantages of MAC

• Lack of Flexibility
01
Users cannot modify
permissions.

02 • Complexity
Requires careful planning and
maintenance.

03 • Usability Concerns
Can be overly restrictive for
collaborative environments.
Real-World
Applications
Military and Defense:

Classifies data based on sensitivity.

Healthcare
Protects patient records.

Finance

Secures financial transactions and

records.
Examples of MAC

• Operating Systems:
- SELinux (Security-Enhanced Linux).

- Windows Mandatory Integrity Control

(MIC).

• Database Systems:

- Enforcing read/write rules based on data

classification.
Conclusion
• Summary:
- MAC offers robust security at the cost of
flexibility.
- Essential for environments where data
sensitivity is critical.

• Final Thought:
- Balancing security and usability is key in
any access control system.

Nissan Serena c24 Repair Manual Index
0% (3)
Nissan Serena c24 Repair Manual Index
18 pages
Nuix EDiscovery User Guide v4 2 - 4
100% (1)
Nuix EDiscovery User Guide v4 2 - 4
390 pages
Global Technical Academy E-Learning Training Catalog 2024
No ratings yet
Global Technical Academy E-Learning Training Catalog 2024
34 pages
CyberSecurity Final Exam
No ratings yet
CyberSecurity Final Exam
2 pages
Blockchain For Cybersecurity A Comprehensive Survey
100% (1)
Blockchain For Cybersecurity A Comprehensive Survey
6 pages
Chapter 3 Exercises
50% (2)
Chapter 3 Exercises
3 pages
IPS and IDS
100% (1)
IPS and IDS
6 pages
Data Backup Types Explained - Full, Incremental, Differential and Incremental-Forever Backup
0% (1)
Data Backup Types Explained - Full, Incremental, Differential and Incremental-Forever Backup
5 pages
Lecture 1 Information Security Design
No ratings yet
Lecture 1 Information Security Design
55 pages
Lecture 1 - Basic Concepts in Information Security
No ratings yet
Lecture 1 - Basic Concepts in Information Security
40 pages
Security Lab
No ratings yet
Security Lab
49 pages
OSSEC HIDS Agent Installation: 1. Download The Latest Version and Verify Its Checksum
100% (1)
OSSEC HIDS Agent Installation: 1. Download The Latest Version and Verify Its Checksum
6 pages
Assignment On Wireshar1
No ratings yet
Assignment On Wireshar1
4 pages
Final Assessment 20202
No ratings yet
Final Assessment 20202
9 pages
Chapter 3 - User Authentication
No ratings yet
Chapter 3 - User Authentication
48 pages
WP-Encryption Steps Checklist 060830
No ratings yet
WP-Encryption Steps Checklist 060830
19 pages
Design of An Online Banking Authentication System, Implementing Mobile-OTP With QR-Code
No ratings yet
Design of An Online Banking Authentication System, Implementing Mobile-OTP With QR-Code
15 pages
Website Development of Crime Management System
No ratings yet
Website Development of Crime Management System
35 pages
Ldap
No ratings yet
Ldap
18 pages
Bank Management System
No ratings yet
Bank Management System
5 pages
CIS416 - Data and Information Managment - Syllabus 2020-2021
No ratings yet
CIS416 - Data and Information Managment - Syllabus 2020-2021
7 pages
Hands-On Ethical Hacking and Network Defense: Linux Operating System Vulnerabilities
No ratings yet
Hands-On Ethical Hacking and Network Defense: Linux Operating System Vulnerabilities
40 pages
Topic 7 - Recovery Strategies and Tool
No ratings yet
Topic 7 - Recovery Strategies and Tool
40 pages
INT250
No ratings yet
INT250
2 pages
An Overview of Computer Security PPT by Matt Bishop
No ratings yet
An Overview of Computer Security PPT by Matt Bishop
113 pages
Isaca Code of Professional Ethics Is Auditing Standards Is Auditing Guidelines Tools and Techniques
No ratings yet
Isaca Code of Professional Ethics Is Auditing Standards Is Auditing Guidelines Tools and Techniques
20 pages
Database Administration
No ratings yet
Database Administration
12 pages
A Comprehensive Analysis of Network Scanning and Security Assessment Tool
No ratings yet
A Comprehensive Analysis of Network Scanning and Security Assessment Tool
12 pages
Information Security (241207) Question Bank: Unit - I 2 Marks
No ratings yet
Information Security (241207) Question Bank: Unit - I 2 Marks
5 pages
Computer Engineering Certificate No PWD
100% (1)
Computer Engineering Certificate No PWD
37 pages
History of Information Security
100% (1)
History of Information Security
13 pages
Police Management System Crime File Body
No ratings yet
Police Management System Crime File Body
53 pages
Scenario: ABC College Wants To Develop A University Management System (UMS) To Store Information On
No ratings yet
Scenario: ABC College Wants To Develop A University Management System (UMS) To Store Information On
1 page
Windows S-TAP User Guide V 10.6
No ratings yet
Windows S-TAP User Guide V 10.6
115 pages
18CSC364J - Information Security MCQ UNIT 4
No ratings yet
18CSC364J - Information Security MCQ UNIT 4
5 pages
Chapter 5. Computer Security
No ratings yet
Chapter 5. Computer Security
27 pages
Firewall Abstract
No ratings yet
Firewall Abstract
5 pages
Creating Group Policy Objects: LAB 16-B
No ratings yet
Creating Group Policy Objects: LAB 16-B
4 pages
IS Lab Manual
No ratings yet
IS Lab Manual
34 pages
IBM Security QRadar DSM Configuration Guide
100% (1)
IBM Security QRadar DSM Configuration Guide
766 pages
Information Security in Banking Sector PDF
100% (1)
Information Security in Banking Sector PDF
24 pages
It Security
No ratings yet
It Security
24 pages
Cryptography (CSC316) : Unit I: Introduction and Classical Ciphers
No ratings yet
Cryptography (CSC316) : Unit I: Introduction and Classical Ciphers
31 pages
2-Hunting Insider Threats Part 1
No ratings yet
2-Hunting Insider Threats Part 1
22 pages
Exercises Netflow Nfsen
No ratings yet
Exercises Netflow Nfsen
9 pages
Information Security in General
No ratings yet
Information Security in General
12 pages
CH 2 DB Security & Authorization
No ratings yet
CH 2 DB Security & Authorization
41 pages
L04 Authentication and Access Control
No ratings yet
L04 Authentication and Access Control
20 pages
Client-Server Reviewer
No ratings yet
Client-Server Reviewer
7 pages
Bell LaPadula Model
No ratings yet
Bell LaPadula Model
4 pages
Cccure 04. Communication and Network Security Cissp Practice Test With Answer and Explanation
No ratings yet
Cccure 04. Communication and Network Security Cissp Practice Test With Answer and Explanation
421 pages
Lab 1 Pentest
No ratings yet
Lab 1 Pentest
4 pages
Unit Iii - System Hacking-Notes (Q&a)
No ratings yet
Unit Iii - System Hacking-Notes (Q&a)
19 pages
Unit 38 DatabaseManagementSyst
No ratings yet
Unit 38 DatabaseManagementSyst
27 pages
Network Security Presentation
No ratings yet
Network Security Presentation
10 pages
Introduction To Active Directory
60% (10)
Introduction To Active Directory
39 pages
Principals of Information Security, Fourth Edition: Legal, Ethical, and Professional Issues in Information Security
No ratings yet
Principals of Information Security, Fourth Edition: Legal, Ethical, and Professional Issues in Information Security
44 pages
3DES Triple DES
No ratings yet
3DES Triple DES
14 pages
Merged MAC With Soft Colors
No ratings yet
Merged MAC With Soft Colors
12 pages
Mac Dbms
No ratings yet
Mac Dbms
14 pages
Dac, Mac and Rbac Models
No ratings yet
Dac, Mac and Rbac Models
9 pages
Chapter 4
No ratings yet
Chapter 4
9 pages
Indicon 2010
No ratings yet
Indicon 2010
3 pages
Vedang Chemical Transcript
No ratings yet
Vedang Chemical Transcript
12 pages
OTBI Training Guide - Updated
No ratings yet
OTBI Training Guide - Updated
26 pages
KCH6N Display Profit Center Hierarchy
No ratings yet
KCH6N Display Profit Center Hierarchy
6 pages
Chapter 2 - Auditing IT Governance Controls: True/False
No ratings yet
Chapter 2 - Auditing IT Governance Controls: True/False
9 pages
IoT-Based Predictive Maintenance
No ratings yet
IoT-Based Predictive Maintenance
10 pages
Ali CV PDF
No ratings yet
Ali CV PDF
2 pages
Guide To Size Hybrid Systems
No ratings yet
Guide To Size Hybrid Systems
7 pages
Sem 4th Java Practical File Modify
100% (1)
Sem 4th Java Practical File Modify
13 pages
Agt 230
No ratings yet
Agt 230
24 pages
Secondary Storage Devices: Magnetic Disks
No ratings yet
Secondary Storage Devices: Magnetic Disks
34 pages
47 SCORE Current Trends and Issues Final Exam - Attempt Review
No ratings yet
47 SCORE Current Trends and Issues Final Exam - Attempt Review
17 pages
SE LAB Exp-2-1
No ratings yet
SE LAB Exp-2-1
26 pages
Laboratory Certificate: in Christ Academy, Bangalore
No ratings yet
Laboratory Certificate: in Christ Academy, Bangalore
16 pages
Main Mini Report
No ratings yet
Main Mini Report
21 pages
DATACOM Ethernet Switches DM2100 Family - Ethernet Demarcation Devices
No ratings yet
DATACOM Ethernet Switches DM2100 Family - Ethernet Demarcation Devices
4 pages
App Design Rubric Digital Technology Year 6
No ratings yet
App Design Rubric Digital Technology Year 6
2 pages
HOWTO - Network Logs API Endpoint Guide - GuardiCore
No ratings yet
HOWTO - Network Logs API Endpoint Guide - GuardiCore
10 pages
Optimization of Furnace Combustion Control System Based On Double Cross Limiting Strategy
No ratings yet
Optimization of Furnace Combustion Control System Based On Double Cross Limiting Strategy
4 pages
Class 11 CH - 1 Basic Computer Organization
No ratings yet
Class 11 CH - 1 Basic Computer Organization
4 pages
75:1 Fire-Ball 425 Pumps: Instructions - Parts List
No ratings yet
75:1 Fire-Ball 425 Pumps: Instructions - Parts List
18 pages
A Case Study Review: Future of Internet of Things (Iot) in Malaysia
No ratings yet
A Case Study Review: Future of Internet of Things (Iot) in Malaysia
14 pages
Batch Records Hando
No ratings yet
Batch Records Hando
39 pages
IMaster MAE V100R023C10SPC150 Upgrade Expert Operation Guide (Virtual Cluster Remote Cold Backup System, TaiShan)
No ratings yet
IMaster MAE V100R023C10SPC150 Upgrade Expert Operation Guide (Virtual Cluster Remote Cold Backup System, TaiShan)
101 pages
11 M Bester The Application of Regenerative Feed Water Heating To Power Cycles
No ratings yet
11 M Bester The Application of Regenerative Feed Water Heating To Power Cycles
19 pages
Buffers - LSI & Oleo
No ratings yet
Buffers - LSI & Oleo
16 pages
Design Clinic
No ratings yet
Design Clinic
10 pages
Characteristics: Technical Data:: General Description: Input Range
No ratings yet
Characteristics: Technical Data:: General Description: Input Range
2 pages