Brewer and Nash model
Encyclopedia
The Brewer and Nash model was constructed to provide information security
access controls that can change dynamically. This security model, also known as the Chinese wall
model, was designed to provide controls that mitigate conflict of interest
in commercial organizations, and is built upon an information flow model.
In the Brewer and Nash Model no information can flow between the subjects and objects in a way that would create a conflict of interest.
Information security
Information security means protecting information and information systems from unauthorized access, use, disclosure, disruption, modification, perusal, inspection, recording or destruction....
access controls that can change dynamically. This security model, also known as the Chinese wall
Chinese wall
In business, a Chinese wall or firewall is an information barrier implemented within a firm to separate and isolate persons who make investment decisions from persons who are privy to undisclosed material information which may influence those decisions...
model, was designed to provide controls that mitigate conflict of interest
Conflict of interest
A conflict of interest occurs when an individual or organization is involved in multiple interests, one of which could possibly corrupt the motivation for an act in the other....
in commercial organizations, and is built upon an information flow model.
In the Brewer and Nash Model no information can flow between the subjects and objects in a way that would create a conflict of interest.
See also
- Biba modelBiba modelThe Biba Model or Biba Integrity Model developed by Kenneth J. Biba in 1977, is a formal state transition system of computer security policy that describes a set of access control rules designed to ensure data integrity. Data and subjects are grouped into ordered levels of integrity...
- Clark-Wilson modelClark-Wilson modelThe Clark-Wilson integrity model provides a foundation for specifying and analyzing an integrity policy for a computing system.The model is primarily concerned with formalizing the notion of information integrity. Information integrity is maintained by preventing corruption of data items in a...
- Graham-Denning modelGraham-Denning modelThe Graham-Denning Model is a computer security model that shows how subjects and objects should be securely created and deleted.It also addresses how to assign specific access rights...
- Bell-La Padula model