• Corpus ID: 15865277

On Five Deenitions of Data Integrity 1

  title={On Five Deenitions of Data Integrity 1},
  author={Ravi S. Sandhu},
This paper compares ve de nitions of data integrity, and shows how they can be ordered in an increasingly restrictive sequence. The most general of these, due to Courtney and Ware [6], is based on the concept of expectation of data quality: data has integrity to the extent that its quality meets, or exceeds, the quality requirements that users expect of it. This de nition incorporates liveness requirements, whereas the others only address safety requirements. The second and third de nitions are… 

Figures from this paper




In response to the strawman document [9] we propose that trust be treated as synonymous with integrity rather than synonymous with con dence. We also propose that mandatory controls be taken to mean

A comparison of type enforcement and Unix setuid implementation of well-formed transactions

  • D. ThomsenJ. Haigh
  • Computer Science
    [1990] Proceedings of the Sixth Annual Computer Security Applications Conference
  • 1990
The effectiveness of two mechanisms for implementing the concept of a well-formed transaction, the Secure Ada Target (SAT) type enforcement mechanism and the Unix setuid mechanism are compared and contrasted.

Integrity controls for military and commercial applications

  • R. R. Jueneman
  • Computer Science
    [Proceedings 1988] Fourth Aerospace Computer Security Applications
  • 1988
It is concluded that a mandatory integrity policy consisting of the Biba hierarchical integrity policy extended to include integrity categories and multilevel integrity-trusted subjects, plus a discretionary integrity policy that uses a digital signature mechanism incorporated in a file label to indicate who created or produced that file, can provide integrity controls very well-suited to the networking environment.

A Comparison of Commercial and Military Computer Security Policies

It is argued that a lattice model is not sufficient to characterize integrity policies, and that distinct mechanisms are needed to Control disclosure and to provide integrity.


This publication is effective immediately and is mandatory for use by all DoD Components in carrying out ADP system technical security evaluation activities applicable to the processing and storage of classified and other sensitive DoD information and applications as set forth herein.

A lattice model of secure information flow

The model provides a unifying view of all systems that restrict information flow, enables a classification of them according to security objectives, and suggests some new approaches to formulating the requirements of secure information flow among security classes.

The Canadian trusted computer product evaluation criteria

  • E. Bacic
  • Political Science, Computer Science
  • 1990
The Canadian trusted computer product evaluation criteria, is an attempt to address those areas which were not (or were insufficiently) addressed in the US TCSEC.

Lattice-based access control models

A balanced perspective on lattice-based access control models is provided and information flow policies, the military lattice,Access control models, the Bell-LaPadula model, the Biba model and duality, and the Chinese Wall lattice are reviewed.

Integrity considerations for secure computer systems

Some Informal Comments About Integrity and the Integrity Workshop.

  • Proc. of the Invitational Workshop on Data Integrity,
  • 1989