Which security model best fits an organization requiring strong isolation between different classification levels of data?

  1. Biba model
  2. Take-Grant model
  3. Bell-LaPadula model ✓
  4. Clark-Wilson model

Correct answer: Bell-LaPadula model

Option C is correct because the Bell-LaPadula model is a confidentiality-focused access control model designed for multi-level security environments, enforcing the 'no read up, no write down' rules that ensure strict isolation between data classification levels such as Confidential, Secret, and Top Secret. Option A is incorrect because the Biba model focuses on data integrity rather than confidentiality, enforcing 'no write up, no read down' to prevent integrity violations, not classification-level isolation for confidentiality. Option B is incorrect because the Take-Grant model is a formal model describing how access rights can be transferred between subjects and objects, and is not specifically designed for multi-level classification isolation. Option D is incorrect because the Clark-Wilson model also addresses data integrity by enforcing well-formed transactions and separation of duties, rather than providing confidentiality isolation between classification levels.

Topic: Security Architecture · bell-lapadula, access control models, multi-level security, data classification

Practice CompTIA Security+ (SY0-701) Questions Free