Definition
A security model is a schematic description of a set of entities and relationships by which a specified set of security services are provided by or within a system.
Overview
"A [security] model differs from a policy in two ways:
- It describes the desired behavior of a computer system's mechanisms, not that of the larger system that includes people.
- It is precisely stated in formal language that resolves the ambiguities of English and makes it possible, at least in principle, to give a mathematical proof that a system satisfies the model."[1]