The link to the "Guide to CISSP" page, within the External Links section, points to a search results page which itself returns no results. I would suggest that the link is amended to instead point to the following page, still within the "Guide to CISSP" site: www.guidetocissp.com/search/label/Security%20Models%20and%20Architecture
The sentences 'A computer security model is a scheme for specifying and enforcing security policies' and 'A computer security model is implemented through a computer security policy' seem to convey opposite ideas.
The first implies that a model implements a policy, the second that a policy implements a model. Which is correct? --Liam McM 16:46, 18 December 2017 (UTC)