Motivated by the conflict of interest requirements. Consider competing law firms, and the associated data that they would wish to keep private. - Chinese wall policy defines what objects employees of the firm can access to avoid conflict of interest - Objects have labels based on the companies that they belong to - Companies may be grouped together → based on company label, objects are grouped together - Conflict classes → At the highest level, all objects which have labels for competing companies are clustered together ![[attachments/Pasted image 20230618185701.png]] ### Policy access rules A user $U$ can access an object $O$ belonging to a company $C$ as long as $U$ has not accessed an object from another company in $C$‘s conflicting group.