Online Learning Platform

Information SEcurity > Multilevel Security (MLS) > Biba Model

Biba Model: Protecting Data Integrity

Biba Integrity Model was developed by Kenneth J. Biba in 1975. Unlike Bell–LaPadula, which focuses on confidentiality, the Biba Model focuses on protecting data integrity. Integrity means ensuring that data remains correct, trustworthy, and free from unauthorized changes.

Main Rules of the Biba Model

  1. Simple Integrity Property - “No Read Down”: A user cannot read information from a lower integrity level. Example: A highly trusted manager should not read untrusted or unreliable data. This prevents trusted users from being affected by low-quality or corrupted information.
  2. Star (*) Integrity Property - “No Write Up”: A user cannot write data to a higher integrity level. Example: A low-level employee cannot modify highly trusted financial records. This prevents corruption of important data. The Biba Model aims to:
  1. Protect data from unauthorized modification.
  2. Prevent authorized users from making improper changes.
  3. Ensure data remains internally and externally consistent.
Prev
Bell–LaPadula Model
Next
Differences between Bell-LaPadula and Biba Model
Feedback
ABOUT

Statlearner


Statlearner STUDY

Statlearner