Skip to main content
Article thumbnail
Location of Repository

On the Modeling of Bell-LaPadula Security Policies using RBAC

By Gansen Zhao and David W. Chadwick


The Bell-LaPadula security model is a hybrid model that combines mandatory access controls and discretionary access controls. The Bell-LaPadula security model has been widely accepted in military environments for its capability to specify military style confidentiality policies. The role based access control (RBAC) model has attracted extensive research effort and has been acknowledged as a flexible and policy natural model. This paper investigates a way of modeling Bell-LaPadula security policies using the RBAC model. The capability of modeling Bell-LaPadula security policies using RBAC model means that applications that are implemented using the RBAC model can then be deployed in military environments and will meet their requirements for information confidentiality

Topics: QA76
Publisher: IEEE
Year: 2008
OAI identifier:

Suggested articles


  1. (2003). and E.Ball. Implementing role based access controls using X.509 attribute certificates. doi
  2. (1975). Computer security model: Unified exposition and multics interpretation.
  3. (1998). Formal Specification for Role Based Access Control User/Role and Role/Role Relationship Management. doi
  4. (1993). Lattice-based access control models. doi
  5. (1996). Modeling mandatory access control in role-based security systems. doi
  6. (1996). Role hierarchies and constraints for latticebased access controls. doi
  7. (1996). Role-based access control models. doi
  8. (1992). Role-based Access Control. doi
  9. (2000). The NIST Model for Role Based Access Control: Towards a Unified Standard. doi
  10. (2000). Using attribute certificates to implement role-based authorization and access controls.

To submit an update or takedown request for this paper, please submit an Update/Correction/Removal Request.