Select Page

Security Modes in Mandatory Access Control (MAC)

CISSP

  1. Dedicated Security Mode
    • Access: All users can access all data.
    • Clearance: Users must have clearance for all information.
    • Need to Know: Required for all data.
  2. System High Security Mode
    • Access: All users can access some data, based on the need to know.
    • Clearance: Users must have clearance for all information.
    • Need to Know: Required for some data.
  3. Compartmented Security Mode
    • Access: All users can access some data based on their need to know and approval.
    • Clearance: Users must have clearance for all information they access.
    • Need to Know: Required for some data.
    • Additional Feature: Use of information labels.
  4. Multi-level Security Mode
    • Access: All users can access some data, based on their need to know, approval, and clearance.
    • Clearance: Users must have clearance for all information they access.
    • Need to Know: Required for some data.
  5. Controlled Type of Multilevel Security
    • Trust: A limited amount of trust is placed in the system’s hardware/software along with classification.
    • Access: Limited access, where the minimum user clearance is not cleared, and the maximum data classification is unclassified but sensitive.

These security modes help enforce strict access control in environments where data sensitivity and user clearance levels must be rigorously managed.

Latest Post:

Pin It on Pinterest