Home > Glossary > Certified Information Systems Security Professional > Biba Integrity Model

📖 What is Biba Integrity Model?

The Biba Integrity Model is a formal security model designed to ensure data integrity. It utilizes the 'no read down' and 'no write up' rules to prevent low-integrity information from contaminating or corrupting high-integrity data.

🥋 Sensei Says:

"Biba is essentially the opposite of Bell-LaPadula. While Bell-LaPadula protects secrets, Biba protects the accuracy and trustworthiness of the data."

📚 Certification: Certified Information Systems Security Professional (CISSP)

🔑 What are the Key Concepts of Biba Integrity Model?

▸ The Simple Integrity Property prohibits a subject from reading data at a lower integrity level, preventing high-integrity processes from being contaminated by untrustworthy information.
▸ The Star (*) Integrity Property prevents a subject from writing data to a higher integrity level, ensuring low-integrity subjects cannot corrupt or modify high-integrity objects.
▸ The Invocation Property restricts a subject from invoking or sending messages to subjects at a higher integrity level to maintain strict hierarchical control and trust.
▸ Biba focuses exclusively on the Integrity pillar of the CIA triad, prioritizing the accuracy and trustworthiness of data over its confidentiality or availability.

🎯 How does Biba Integrity Model appear on the CISSP Exam?

You may be asked to identify the appropriate security model for a system where preventing the corruption of critical data is more important than keeping it secret, such as a medical dosage database.

A scenario might describe a user with a 'Low' integrity clearance attempting to modify a 'High' integrity system file; you must identify which Biba property prevents this action.

Expect questions that require you to contrast Biba with the Bell-LaPadula model, specifically focusing on how their rules for reading and writing are inverted to serve different goals.

❓ Frequently Asked Questions

Why is 'no read down' necessary for integrity?

If a high-integrity subject reads low-integrity data, they might rely on inaccurate or malicious information to perform a task, which effectively lowers the integrity of the resulting output.

How does Biba differ from the Clark-Wilson model?

Biba is a lattice-based model using hierarchical levels, whereas Clark-Wilson focuses on 'well-formed transactions' and separation of duties to ensure integrity through controlled access and auditing.

Related Terms from Certified Information Systems Security Professional

RTO System Hardening Rainbow Table Procedure Rootkit Virtual Local Area Network (VLAN)

📝 Related Study Guides

Study Guide 10 min read

How to Pass the CISSP Exam: A Realistic 2026 Study Plan

To pass the CISSP, you must transition from a technical mindset to a managerial one, focusing on risk management and policy over implementation. Success requires a 3-6 month study plan covering all eight domains, using adaptive practice exams to identify gaps and mastering the "mile wide, inch deep" breadth of the CBK.

Career Guide 10 min read

CISSP Experience Requirements: How to Get Your Waiver in 2026

To earn the CISSP, you need five years of cumulative, paid work experience in two or more of the eight CISSP domains. You can obtain a one-year waiver through a four-year college degree or approved professional certifications. Those lacking full experience can become an Associate of ISC2 after passing the exam.

Deep Dive 8 min read

Kerberos Authentication Explained for the CISSP Exam

Kerberos is a ticket-based authentication protocol designed to provide strong authentication for client/server applications by using secret-key cryptography. It utilizes a trusted third party called the Key Distribution Center (KDC) to issue tickets, enabling Single Sign-On (SSO) and preventing replay attacks through the use of synchronized timestamps.