Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Authorization Sec PAL: A Decentralized Authorization Language.

Published byBryce Heath Modified over 8 years ago

Similar presentations

Presentation on theme: "1 Authorization Sec PAL: A Decentralized Authorization Language."— Presentation transcript:

1 1 Authorization Sec PAL: A Decentralized Authorization Language

2 Running title CS 5204 – Fall, 20092 Introduction This presentation is based on Design and Semantics of a Decentralized Authorization Language The paper describes an authorization language named SecPAL Agenda:  Problem Description  How SecPAL attempts to solve this problem  SecPAL Semantics and Syntax  Examples and Policy Idioms

3 Running title CS 5204 – Fall, 20093 Problem Description Authentication deals with the problem of how to verify identity  How do we know that user Alice is really Alice?  This presentation assumes that authentication is handled elsewhere Authorization deals with the question of what actions an identity can take  Is Alice allowed to read or write to a certain file?  Previous lectures dealt with how a single system might handle authorization

4 Running title CS 5204 – Fall, 20094 Problem Description Consider an ad hoc network of institutions, each with its own user base and access protocols

5 Running title CS 5204 – Fall, 20095 How SecPAL attempts to solve this problem Virtual organization must establish an authorization policy SecPAL is a declarative authorization policy language  Hosts asserts facts about the rights of users  Authorization policy consists of a collection of assertions (Assertion Context)  Systems can perform queries against Assertion Context  Provides a syntax that is easily read and reasoned by humans

6 Running title CS 5204 – Fall, 20096 SecPAL Semantics and Syntax An authorization policy consists of a set of assertions, called the assertion context An assertion has this form: A says fact if fact 1,..., fact n,c A is the issuer, fact 1,..fact n are conditional facts, and c is the constraint Conditional facts and constraints are optional Assertions can contain variables

7 Running title CS 5204 – Fall, 20097 Assertion Examples Examples: STS says Alice is a researcher FileServer says x can read /project if x is a researcher Alice says Cluster can read /project if currentTime()<=07/09/2006

8 Running title CS 5204 – Fall, 20098 Constraints Constraints narrow the scope of an assertion Can include equality, numerical inequality, path/hierarchical constraints, and regular expressions FileServer says x can read file if x can read dir, file dir, x matches * son

9 Running title CS 5204 – Fall, 20099 Delegation Assertions can specify who has the right to assert a fact Implemented using the pharse “can say” Cluster says STS can say 0 x is a researcher Cluster has delegated the authority to assert who is a researcher to STS “say 0 ” means that STS cannot re-delegate; “say ∞ ” would allow STS to re-delegate A fact that uses “can say” is considered nested, and is considered flat otherwise

10 Running title CS 5204 – Fall, 200910 Deduction Rules SecPAL provides 3 deduction rules Allows conclusions to be made from assertions in the assertion context

11 Running title CS 5204 – Fall, 200911 Deduction Rule “condition” Very simply, the condition rule says that if all of the facts within an assertion are true, the entire assertion is true.

12 Running title CS 5204 – Fall, 200912 Rule “condition” Example Given these assertions: Cluster says x can execute dbgrep if x is a researcher Cluster says Alice is a researcher You can deduce: Alice can execute dbgrep

13 Running title CS 5204 – Fall, 200913 Deduction Rule “can say” If A says that B can say fact, and B says fact, then you can deduce that A has asserted fact.

14 Running title CS 5204 – Fall, 200914 Rule “can say” Example Given these assertions: Cluster says STS can say x is a researcher STS says x is a researcher You can deduce: Cluster says Alice is a researcher

15 Running title CS 5204 – Fall, 200915 Deduction Rule “can act as” Asserts that all facts applicable to C also apply to B, when it is derivable that B can act as C

16 Running title CS 5204 – Fall, 200916 Rule “can act as” Example Given these assertions: FileServer says Node23 can act as Cluster FileServer says Cluster can say x is a researcher You can deduce: FileServer says Node23 can say x is a researcher

17 Running title CS 5204 – Fall, 200917 Authorization Queries Have form A says fact and constraints Performed against a specific assertion context Returns an answer set of all substitutions that make the query true. If the query has no variables, either an empty set or singleton set (for yes or true) is returned.

18 Running title CS 5204 – Fall, 200918 Authorization Query Example Assertion Context: Alice says Bob can read Foo Alice says Charlie can read Foo Alice says David can read Foo Alice says Edward can read Bar Authorization query: Alice says x can read Foo Returns: Bob, Charlie, David These are all the assignments for x that can read Foo according to Alice

19 Running title CS 5204 – Fall, 200919 Authorization Query Table Contains authorization queries for a local assertion context Allows for parameterization of queries When called, parameter is passed to the query This allows an instantiated authorization query to be run against the assertion context Example: check-access-permissions(x): FileServer says x has access from t 1 till t 2, t 1 ≤ currentTime() ≤ t 2, not  t 3, t 4 ( FileServer says x has no access from t 3 till t 4, t 3 ≤ currentTime() ≤ t 4 )

20 Running title CS 5204 – Fall, 200920 Authorization Query Table Example If called for user Alice, the query becomes: check-access-permission(Alice) : FileServer says Alice has access from t 1 till t 2, t 1 ≤ currentTime() ≤ t 2, not  t 3, t 4 ( FileServer says Alice has no access from t 3 till t 4, t 3 ≤ currentTime() ≤ t 4 )

21 Running title CS 5204 – Fall, 200921 Policy Idioms SecPAL can be used to model a variety of authorization protocols Roles: NHS says FoundationTrainee can read /docs NHS says SpecialistTrainee can act as FoundationTrainee NHS says SeniorMedPractitioner can act as SpecialistTrainee NHS says Alice can act as SeniorMedPractitioner

22 Running title CS 5204 – Fall, 200922 Roles Roles: NHS says FoundationTrainee can read /docs NHS says SpecialistTrainee can act as FoundationTrainee NHS says SeniorMedPractitioner can act as SpecialistTrainee NHS says Alice can act as SeniorMedPractitioner Alice has the role of SeniorMedPractitioner, and inherits the capabilities of the SpecialistTrainee and FoundationTrainee

23 Running title CS 5204 – Fall, 200923 Bell-LaPadula *-Property: FileServer says x can read f if x is a user, f is a file, level( x ) >= level(f) FileServer says x can write f if x is a user, f is a file, level(x) <= level(f) FileServer asserts that a user can read any file with a level that is the same or less than that of the user, and write to any file that has a level that is the same or greater than that of the user.

24 Running title CS 5204 – Fall, 200924 Decidability To be useful, authorization queries must return in a reasonable amount of time. The validity of a queries must be determined in a finite number of steps. That is, a query must be decidable SecPAL provides definitions of safety conditions to determine whether an assertion or query is decidable.

25 Running title CS 5204 – Fall, 200925 Assertion Safety Assertion A says fact if fact 1,..., fact n,c is safe if and only if: all conditional facts are flat All variables in c also occur somewhere else in the assertion fact is flat All variables in fact occur in a conditional fact

26 Running title CS 5204 – Fall, 200926 Authorization Query Safety An authorization query is safe if and only if all variables in q are instantiated when query is evaluate. Safe: x says y can read f, not(y says x can read f) All variables in the negation are instantiated by the left-hand side of the query Not safe: x says y can read f, not(y says z can read f) z will not be instantiated when negation clause is evaluated

27 Running title CS 5204 – Fall, 200927 Questions?

Download ppt "1 Authorization Sec PAL: A Decentralized Authorization Language."

Similar presentations

Semantics Static semantics Dynamic semantics attribute grammars

Semantics Static semantics Dynamic semantics attribute grammars
A Unified Approach to Trust, Delegation, and Authorization Blair Dillaway, Greg Fee Microsoft Corporation Presented at GGF18 Copyright © 2006, Microsoft.

A Unified Approach to Trust, Delegation, and Authorization Blair Dillaway, Greg Fee Microsoft Corporation Presented at GGF18 Copyright © 2006, Microsoft.
Introduction to Prolog, cont’d Lecturer: Xinming (Simon) Ou CIS 505: Programming Languages Fall 2010 Kansas State University 1.

Introduction to Prolog, cont’d Lecturer: Xinming (Simon) Ou CIS 505: Programming Languages Fall 2010 Kansas State University 1.
Lecture 3Dr. Verma1 COSC 6397 – Information Assurance Module M2 – Protocol Specification and Verification University of Houston Rakesh Verma Lecture 3.

Lecture 3Dr. Verma1 COSC 6397 – Information Assurance Module M2 – Protocol Specification and Verification University of Houston Rakesh Verma Lecture 3.
Rigorous Software Development CSCI-GA 3033-011 Instructor: Thomas Wies Spring 2012 Lecture 11.

Rigorous Software Development CSCI-GA Instructor: Thomas Wies Spring 2012 Lecture 11.
1 Authorization XACML – a language for expressing policies and rules.

1 Authorization XACML – a language for expressing policies and rules.
Getting started with ML ML is a functional programming language. ML is statically typed: The types of literals, values, expressions and functions in a.

Getting started with ML ML is a functional programming language. ML is statically typed: The types of literals, values, expressions and functions in a.
Answer Set Programming Overview Dr. Rogelio Dávila Pérez Profesor-Investigador División de Posgrado Universidad Autónoma de Guadalajara

Answer Set Programming Overview Dr. Rogelio Dávila Pérez Profesor-Investigador División de Posgrado Universidad Autónoma de Guadalajara
Propositional Logic Russell and Norvig: Chapter 6 Chapter 7, Sections 7.1—7.4 Slides adapted from: robotics.stanford.edu/~latombe/cs121/2003/home.htm.

Propositional Logic Russell and Norvig: Chapter 6 Chapter 7, Sections 7.1—7.4 Slides adapted from: robotics.stanford.edu/~latombe/cs121/2003/home.htm.
C++ Programming: From Problem Analysis to Program Design, Third Edition Chapter 16: Exception Handling.

C++ Programming: From Problem Analysis to Program Design, Third Edition Chapter 16: Exception Handling.
An Approach to Evaluate Data Trustworthiness Based on Data Provenance Department of Computer Science Purdue University.

An Approach to Evaluate Data Trustworthiness Based on Data Provenance Department of Computer Science Purdue University.
Comp 205: Comparative Programming Languages Semantics of Imperative Programming Languages denotational semantics operational semantics logical semantics.

Comp 205: Comparative Programming Languages Semantics of Imperative Programming Languages denotational semantics operational semantics logical semantics.
Constraint Logic Programming Ryan Kinworthy. Overview Introduction Logic Programming LP as a constraint programming language Constraint Logic Programming.

Constraint Logic Programming Ryan Kinworthy. Overview Introduction Logic Programming LP as a constraint programming language Constraint Logic Programming.
5-1 Flow of Control Recitation-01/25/2008  CS 180  Department of Computer Science  Purdue University.

5-1 Flow of Control Recitation-01/25/2008  CS 180  Department of Computer Science  Purdue University.
CS 330 Programming Languages 09 / 13 / 2007 Instructor: Michael Eckmann.

CS 330 Programming Languages 09 / 13 / 2007 Instructor: Michael Eckmann.
Chapter 3 Describing Syntax and Semantics Sections 1-3.

Chapter 3 Describing Syntax and Semantics Sections 1-3.
Chapter 3 Describing Syntax and Semantics Sections 1-3.

Chapter 3 Describing Syntax and Semantics Sections 1-3.
CS 330 Programming Languages 09 / 16 / 2008 Instructor: Michael Eckmann.

CS 330 Programming Languages 09 / 16 / 2008 Instructor: Michael Eckmann.
Logical Operators and Conditional statements

Logical Operators and Conditional statements
C++ for Engineers and Scientists Third Edition

C++ for Engineers and Scientists Third Edition

Similar presentations

Ads by Google