security policy model (SPM)
1. An informal presentation of a formal security policy model [POSIX.6]. 2. An informal presentation of a formal security policy model [TCSEC]. 3. A logically precise distillation of all or part of a System Electronic Information Security Policy, developed to avoid ambiguities and inconsistencies and to form a sound basis for subsequent stages of the development of a system [CESG]. Note: A Security Policy Model may be formal (i.e. based on principles of mathematics).