Skip to main content
SpringerLink
Log in

Mandatory Access Control

  • Reference work entry
  • First Online:
Encyclopedia of Database Systems

Synonyms

Multilevel security

Definition

As stated in [1], “in computer security, ‘mandatory access control (MAC)’ refers to a kind of access control defined by the National Computer Security Centers Trusted Computer System Evaluation Criteria (TCSEC) as a means of restricting access to objects based on the sensitivity (as represented by a label) of the information contained in the objects and the formal authorization (i.e., clearance) of subjects to access information of such sensitivity.” With operating systems, the subjects are processes and objects are files. The goal is to ensure that when a subject accesses a file, no unauthorized information is leaked.

Key Point

MAC Models: MAC models were developed initially for secure operating systems mainly in the 1970s and early 1980s, and started with the Bell and La Padula security model. This model has two properties: the simple security property and the *-property (pronounced the star property). The simple security property states that...

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 4,499.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Hardcover Book
USD 6,499.99
Price excludes VAT (USA)
  • Durable hardcover edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Recommended Reading

  1. http://en.wikipedia.org/wiki/Mandatory_access_control

  2. Bell D, LaPadula L. “Secure Computer Systems: Mathematical Foundations and Model,” M74-244. Bedford: The MITRE Corporation; 1973.

    Google Scholar 

  3. Goguen J, Meseguer J. Security policies and security models. In: Proceedings of the IEEE Symposium on Security and Privacy; 1982. p. 11–20.

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. The University of Texas at Dallas, Richardson, TX, USA

    Bhavani Thuraisingham

Authors
  1. Bhavani Thuraisingham
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Bhavani Thuraisingham .

Editor information

Editors and Affiliations

  1. Georgia Institute of Technology College of Computing, Atlanta, GA, USA

    Ling Liu

  2. University of Waterloo School of Computer Science, Waterloo, ON, Canada

    M. Tamer Özsu

Section Editor information

  1. DiSTA, Univ. of Insubria, Varese, Italy

    Elena Ferrari

Rights and permissions

Reprints and permissions

Copyright information

© 2018 Springer Science+Business Media, LLC, part of Springer Nature

About this entry

Check for updates. Verify currency and authenticity via CrossMark

Cite this entry

Thuraisingham, B. (2018). Mandatory Access Control. In: Liu, L., Özsu, M.T. (eds) Encyclopedia of Database Systems. Springer, New York, NY. https://doi.org/10.1007/978-1-4614-8265-9_214

Download citation

Publish with us

Policies and ethics

Search

Navigation