Back to Security Architecture Models

Graham-Denning Model

5 minutes 5 Questions

The Graham-Denning Model is a formal system for specifying access control policies in computer systems. It comprises of a set of rules and object descriptors that define user and object operations, as well as who can perform them. The model is primarily designed to address the security concerns in multiprocessing systems and ensure that only authorized users can access and manipulate data. The model contains two main components: the protection system functions and the protection system primitives. The first one describes the operations that users can perform on objects, such as creating, deleting, and modifying objects. The second one defines the basic operations that users can perform, such as getting an object, setting an object, and executing an object. The Graham-Denning Model supports two types of access to objects: discretionary access control, where users can define who can access their objects, and mandatory access control, where access to objects is determined by system-wide policies.

Guide to Graham-Denning Model

What is the Graham-Denning Model:
The Graham-Denning Model is a security model that articulates formal rules for managing computer security issues regarding processes and subjects. It revolves around building a system that governs how processes interact, focusing mainly on protection domains, objects, and the rules that specify rights.

Importance of the Graham-Denning Model:
The Graham-Denning model is important for:

  • Ensuring secure information flow within a system
  • Maintaining proper access rights
  • Preventing unauthorized access to processes or objects

How it works:
The Graham-Denning model operates based on a set of '8' rules:
  • Create object
  • Delete object
  • Create subject
  • Delete subject
  • Provide 'read' access
  • Provide 'write' access
  • Provide 'execute' access
  • Transfer access rights
Each of these govern how processes may interact and may be modified or transferred.

Exam Tips: Answering Questions on Graham-Denning Model:
  • Understand the eight rules thoroughly - the exam may include questions on them individually or in combinations.
  • Focus on the relationship between subjects and objects in the model.
  • Be able to explain how rights may be transferred, deleted, or created within the Graham-Denning model.

Test mode:
Start practice test
CISSP - Security Architecture Models Example Questions

Test your knowledge of Amazon Simple Storage Service (S3)

Question 1

A company is implementing the Graham-Denning model for information security. The security officer only wants to allow certain users to transfer ownership of an object. Which of the following rules should be implemented?

Correct Answer: Rule 6

In the Graham-Denning model, Rule 6 enforces the transfer of object ownership, allowing only specific subjects to transfer ownership of an object. The other rules serve different purposes in the model.

Question 2

In the Graham-Denning model, which rule should be implemented to allow an object creator to grant read access to other subjects?

Correct Answer: Rule 7

In the Graham-Denning model, Rule 7 specifically addresses how to securely provide the grant access right. This rule allows an object creator to grant read access to other subjects. It's crucial because it enables the object creator to control who can access the object they created, which is essential for maintaining security and flexibility in access control. The object creator, having full control over their created object, can use this rule to extend read permissions to other users as needed, ensuring that the principle of least privilege is maintained while allowing necessary access.

Question 3

In an organization using the Graham-Denning model, a user wants to transfer the ownership of a file to another user. What initial step should be performed?

Correct Answer: The owner adds the user to the control list.

Before transferring ownership in the Graham-Denning model, the owner must first grant permission by adding the target user to the control list. The other answers don't align with the model's rules.

Go Premium

CISSP Preparation Package (2024)

  • 4537 Superior-grade CISSP practice questions.
  • Accelerated Mastery: Deep dive into critical topics to fast-track your mastery.
  • Unlock Effortless CISSP preparation: 5 full exams.
  • 100% Satisfaction Guaranteed: Full refund with no questions if unsatisfied.
  • Bonus: If you upgrade now you get upgraded access to all courses
  • Risk-Free Decision: Start with a 7-day free trial - get premium features at no cost!
More Graham-Denning Model questions
12 questions (total)
Start 12 question test