1 Dept of Information and Communication Technology Creating Objects in Flexible Authorization Framework ¹ Dep. of Information and Communication Technology,

Slides:

Advertisements

Similar presentations

QUN NI 1, SHOUHUAI XU 2, ELISA BERTINO 1, RAVI SANDHU 2, AND WEILI HAN 3 1 PURDUE UNIVERSITY USA 2 UT SAN ANTONIO USA 3 FUDAN UNIVERSITY CHINA PRESENTED.

Advertisements

Operating System Security

SOFTWARE TESTING. INTRODUCTION  Software Testing is the process of executing a program or system with the intent of finding errors.  It involves any.

Supervisory Control of Hybrid Systems Written by X. D. Koutsoukos et al. Presented by Wu, Jian 04/16/2002.

Ranking of security controlling strategies driven by quantitative threat analysis. Tavolo 2: "Big data security evaluation" UNIFI-CNR Nicola Nostro, Andrea.

Lakshmi Narayana Gupta Kollepara 10/26/2009 CSC-8320.

Giorgini P., EuroPKI Filling the gap between Requirements Engineering and Public Key/Trust Management Infrastructures Paolo Giorgini Department of.

Access Control Methodologies

Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.

8.2 Discretionary Access Control Models Weiling Li.

Database Management System

Access Control Intro, DAC and MAC System Security.

On Comparing the Expressing Power of Access Control Model Frameworks Workshop on Logical Foundations of an Adaptive Security Infrastructure (WOLFASI) A.

Chapter 4: Security Policies Overview The nature of policies What they cover Policy languages The nature of mechanisms Types Secure vs. precise Underlying.

Chapter 2 Access Control Fundamentals. Chapter Overview Protection Systems Mandatory Protection Systems Reference Monitors Definition of a Secure Operating.

1 Clark Wilson Implementation Shilpa Venkataramana.

ITIS 3200: Introduction to Information Security and Privacy Dr. Weichao Wang.

Distributed Computer Security 8.2 Discretionary Access Control Models - Liang Zhao.

Lecture 7 Access Control

Distributed Computer Security 8.2 Discretionary Access Control Models - Sai Phalgun Tatavarthy.

11 World-Leading Research with Real-World Impact! Role and Attribute Based Collaborative Administration of Intra-Tenant Cloud IaaS (Invited Paper) Xin.

Architectural Design.

Effectively Integrating Information Technology (IT) Security into the Acquisition Process Section 5: Security Controls.

1 September 14, 2006 Lecture 3 IS 2150 / TEL 2810 Introduction to Security.

Testing. Definition From the dictionary- the means by which the presence, quality, or genuineness of anything is determined; a means of trial. For software.

WMS systems manage and coordinate several independent subtasks. The coordination problems get even more serious when the subtasks are performed on separate.

Security Policy What is a security policy? –Defines what it means for a system to be secure Formally: Partition system into –Secure (authorized) states.

© G. Dhillon, IS Department Virginia Commonwealth University Principles of IS Security Formal Models.

1 A pattern language for security models Eduardo B. Fernandez and Rouyi Pan Presented by Liping Cai 03/15/2006.

Switch off your Mobiles Phones or Change Profile to Silent Mode.

Extracting Semantic Constraint from Description Text for Semantic Web Service Discovery Dengping Wei, Ting Wang, Ji Wang, and Yaodong Chen Reporter: Ting.

Ebrahim Tarameshloo, Philip W.L.Fong, Payman Mohassel University of Calgary Calgary, Alberta, Canada {etarames, pwlfong, On Protection.

Next-generation databases Active databases: when a particular event occurs and given conditions are satisfied then some actions are executed. An active.

Name Position Organisation Date. What is data integration? Dataset A Dataset B Integrated dataset Education data + EMPLOYMENT data = understanding education.

. 1. Computer Security Concepts 2. The OSI Security Architecture 3. Security Attacks 4. Security Services 5. Security Mechanisms 6. A Model for Network.

Flexible Support for Multiple Access Control Policies by Sushil Jajodia, Pierangela Samarati, Maria Luisa Sapino, and V.S. Subrahmanian Presented by: Rick.

Data Governance 101. Agenda  Purpose  Presentation (Elijah J. Bell) Data Governance Data Policy Security Privacy Contracts  FERPA—The Law  Q & A.

Computer Science Conformance Checking of Access Control Policies Specified in XACML Vincent C. Hu (National Institute of Standards and Technology) Evan.

XML Access Control Koukis Dimitris Padeleris Pashalis.

12/4/20151 Computer Security Security models – an overview.

FlexFlow: A Flexible Flow Policy Specification Framework Shipping Chen, Duminda Wijesekera and Sushil Jajodia Center for Secure Information Systems George.

Computer Science 1 Detection of Multiple-Duty-Related Security Leakage in Access Control Policies JeeHyun Hwang 1, Tao Xie 1, and Vincent Hu 2 North Carolina.

September XACML: Consistency analysis Luigi Logrippo Université du Québec University of Ottawa

Academic Year 2014 Spring Academic Year 2014 Spring.

1 Access Control Policies: Modeling and Validation Luigi Logrippo & Mahdi Mankai Université du Québec en Outaouais.

Chapter 4: Security Policies Overview The nature of policies What they cover Policy languages The nature of mechanisms Types Secure vs. precise Underlying.

SOFTWARE TESTING. Introduction Software Testing is the process of executing a program or system with the intent of finding errors. It involves any activity.

Computer Security: Principles and Practice

Concepts and Realization of a Diagram Editor Generator Based on Hypergraph Transformation Author: Mark Minas Presenter: Song Gu.

A Comparison of Commercial and Military Computer Security Presenter: Ivy Jiang1 A Comparison of Commercial and Military Computer Security Policies Authors:

© Duminda Wijesekera, 2003 Consistent and Complete Access Control Policies in Use Cases Khaled Alghathbar George Mason University, USA and King Saud University,

Castlebridge associates | | Castlebridge changing how people think about information How to Implement the.

Copyright Sushil Jajodia Recent Advances in the Flexible Access Control Models Duminda Wijesekera ise.gmu.edu/~duminda.html.

CST 312 Pablo Breuer. measures to deter, prevent, detect, and correct security violations that involve the transmission of information.

PREPARED BY: MS. ANGELA R.ICO & MS. AILEEN E. QUITNO (MSE-COE) COURSE TITLE: OPERATING SYSTEM PROF. GISELA MAY A. ALBANO PREPARED BY: MS. ANGELA R.ICO.

INFORMATION ASSURANCE POLICY. Information Assurance Information operations that protect and defend information and information systems by ensuring their.

Chapter 29: Program Security Dr. Wayne Summers Department of Computer Science Columbus State University

SOFTWARE TESTING LECTURE 9. OBSERVATIONS ABOUT TESTING “ Testing is the process of executing a program with the intention of finding errors. ” – Myers.

INTRO TO COMPUTER SECURITY LECTURE 2 Security Policies M M Waseem Iqbal

Lan Zhou, Vijay Varadharajan, and Michael Hitchens

Software Testing.

Kent Seamons Brigham Young University Marianne Winslett, Ting Yu

Security Protection Goals

All You Ever Wanted to Know About Dynamic Taint Analysis & Forward Symbolic Execution (but might have been afraid to ask) Edward J. Schwartz, Thanassis.

CSCE 813 Internet Security Fall 2012

Chapter 29: Program Security

Detecting Conflicts of Interest

Access Control What’s New?

Chapter 4: Security Policies

Definition Of Computer Security

Presentation transcript:

1 Dept of Information and Communication Technology Creating Objects in Flexible Authorization Framework ¹ Dep. of Information and Communication Technology, University of Trento ² Center for Secure Information Systems, George Mason University Nicola Zannone, ¹ ² Sushil Jajodia, ² Duminda Wijesekera ²

2 Dept of Information and Communication Technology Talk Outline  Creating objects in Access Control Framework  Conditions for creating objects  Authorizations on derived objects  Flexible Authorization Framework  Information Flow Control  Conclusion

3 Dept of Information and Communication Technology Access Control  Essential for building secure information systems  Protect the confidentiality of information  An authorization is a triple of the form (o, s, a)  (o, s, +a): subject s is allowed to execute action a on object o  (o, s, −a): subject s is denied to execute action a on object o  Authorization frameworks manage access to data  Is a subject entitled to execute an action on an object?  But...

4 Dept of Information and Communication Technology Creating Objects  Information systems support data processing for manipulating information  The output of data processing can be seen as a new object  Represent data processing as function  e. g.,  s is the subject who wants to perform the data processing  are the objects required by the data processing  o is the output of the data processing  In order to protect data, we should answer  Is the subject s entitled to create the derived object o?  Who is authorized to access the derived object o?

5 Dept of Information and Communication Technology Conditions for Creating Objects  Subjects need to access objects required by data processing  Specific domain conditions for determining who is entitled to execute data processing  e.g. users that play a certain role or belong to a certain group  Make explicit the conditions under which a subject can perform data processing   C represents the condition that must be satisfied  means that object o cannot be created

6 Dept of Information and Communication Technology Authorizations on Derived Objects  Once an object has been created, an access control policy should be associated with the object  The derived object is not independent from the objects used to derived it  The access control policy is defined on the basis of the authorizations associated with the objects used to derive it

7 Dept of Information and Communication Technology Flexible Authorization Framework (FAF)  Proposed by Jajodia et al. [TODS 2001]  Logic-based framework developed to manage access to data  Determine if a user can execute an action on an object  For any access request, exactly one decision (allowed/denied) is provided  Based on a language through which users can specify security policies to be enforced on specific accesses  allow specification of positive and negative authorizations  incorporate notions of authorization propagation, conflict resolution, and decision strategies

8 Dept of Information and Communication Technology FAF Architecture

9 Dept of Information and Communication Technology Semantics & Materialization  A FAF specification forms a locally stratified logic program  It has a unique stable model  Access requests should be authorized or denied very fast  Materialization algorithm reconstructs the unique stable model  Computed in polynomial time on data complexity

10 Dept of Information and Communication Technology When should objects be created? objects cannot be created since required authorizations might be not yet computed authorizations on derived objects are not propagated

11 Dept of Information and Communication Technology A New Architecture

12 Dept of Information and Communication Technology Computational Issues  The new architecture does not preserve the locally stratified structure of the specification, but...  Introducing syntactic constraints  Verify existence of objects  Distinguish the iteration in which objects are derived (i.e., materialization view of each iteration)  Every authorization specification is a locally stratified program   literals in refer to objects created at the i-th iteration  Preserve FAF computational results  Stable model can be computed in polynomial time

13 Dept of Information and Communication Technology Derivation Tree  Information systems manipulate information  The outcome of a data processing can be seen as a new object  The outcome of a data processing may be used as input for other data processing  The process to derive an object can be seen as a tree  Root is the “final” object  Leaves are primitive objects (i.e. objects not derived by using functions)  Edges keep trace of the process used to create objects

14 Dept of Information and Communication Technology Derivation Tree

15 Dept of Information and Communication Technology Information Flow Control  Information systems may release information as part of their functionalities  Derived objects contain information belonging to the objects used to derive it  So they disclose information about the objects used to create it  Need to introduce information flow control  Ensure that information are not disclosed to unauthorized entities  The policy associated with the object is the intersection of the policies associated with the objects used to derive it  Integrity constraint module  Define warning constraints to detect unauthorized information flow

16 Dept of Information and Communication Technology Information Flow Control ? ????

17 Dept of Information and Communication Technology Some Exceptions  Some information must be disclosed for satisfying availability requirements  Privacy Act allows an agency to disclose data without the consent of the data owner to those officer and employees of the agency who need the data to perform their duties  The system administrator may be perfectly happy with a system that does not satisfy all warning constraints  Notice that Warning ≠ Error

18 Dept of Information and Communication Technology Verification Process 1.The authorization framework spots warnings when leaks are detected 2.The system administrator has to decide if  the leak complies with system requirements or  the leak corresponds to a system vulnerability 3. The system administrator will fix system vulnerabilities

19 Dept of Information and Communication Technology Conclusion  Support for object creation  Verify permissions for creating objects  Automatically derive access control policies for derived objects  Formalization of the process for enforcing access control policies concerning derived objects  Mechanisms for detecting information leakage