Presentation is loading. Please wait.

Presentation is loading. Please wait.

A Prologue to Enumerated Authorization Policy ABAC Model.

Published byAngelina Lane Modified over 5 years ago

Similar presentations

Presentation on theme: "A Prologue to Enumerated Authorization Policy ABAC Model."— Presentation transcript:

1 Prosunjit Biswas UTSA prosun.csedu@gmail.com
A Prologue to Enumerated Authorization Policy ABAC Model. Prosunjit Biswas UTSA

2 Recap Attribute Example of attributes What is not an attribute?

3 Recap Attribute based policy

4 Recap Attribute Based Access Control (ABAC)

5 Why ABAC? Pseudo Identity Privacy “Beautiful lady at the bar” problem

6 Why ABAC? Establishment of the missing link
Eliminating human from the loop Assignment/de-assignment Users Roles Permissions Figure 1: RBAC Frequently changing mostly static Missing link Attributes User Attributes Policy Permissions mostly static mostly static Establishment of the missing link Figure 2: ABAC

7 Problem in the adaption of ABAC
Performance Large set of attributes Different attribute sources Unstructured policy References: [1]

8 LaBAC restricts ABAC Restrict number of attributes
Restrict policy structure ABAC LaBAC

9 Label-Based Access Control:
An ABAC Model with Enumerated Authorization Policy.

10 Terminologies Label Enumeration

Download ppt "A Prologue to Enumerated Authorization Policy ABAC Model."

Similar presentations

RBAC Role-Based Access Control

RBAC Role-Based Access Control
ROWLBAC – Representing Role Based Access Control in OWL

ROWLBAC – Representing Role Based Access Control in OWL
Institute for Cyber Security ASCAA Principles for Next- Generation Role-Based Access Control Ravi Sandhu Executive Director & Endowed Professor Institute.

Institute for Cyber Security ASCAA Principles for Next- Generation Role-Based Access Control Ravi Sandhu Executive Director & Endowed Professor Institute.
Institute for Cyber Security ASCAA Principles for Next-Generation Role-Based Access Control Ravi Sandhu Executive Director and Endowed Chair Institute.

Institute for Cyber Security ASCAA Principles for Next-Generation Role-Based Access Control Ravi Sandhu Executive Director and Endowed Chair Institute.
ENGINEERING AUTHORITY AND TRUST IN CYBERSPACE: A ROLE-BASED APPROACH Prof. Ravi Sandhu Laboratory for Information Security Technology George Mason University.

ENGINEERING AUTHORITY AND TRUST IN CYBERSPACE: A ROLE-BASED APPROACH Prof. Ravi Sandhu Laboratory for Information Security Technology George Mason University.
© 2006 Ravi Sandhu www.list.gmu.edu Cyber-Identity, Authority and Trust Systems Prof. Ravi Sandhu Professor of Information Security and Assurance Director,

© 2006 Ravi Sandhu Cyber-Identity, Authority and Trust Systems Prof. Ravi Sandhu Professor of Information Security and Assurance Director,
RBAC and HIPAA Security Uday O. Ali Pabrai, CHSS, SCNA Chief Executive, HIPAA Academy.

RBAC and HIPAA Security Uday O. Ali Pabrai, CHSS, SCNA Chief Executive, HIPAA Academy.
Project Citizen Committee Formation: Where can you best serve our cause?

Project Citizen Committee Formation: Where can you best serve our cause?
The RBAC96 Model Prof. Ravi Sandhu. 2 © Ravi Sandhu WHAT IS RBAC?  multidimensional  open ended  ranges from simple to sophisticated.

The RBAC96 Model Prof. Ravi Sandhu. 2 © Ravi Sandhu WHAT IS RBAC?  multidimensional  open ended  ranges from simple to sophisticated.
Applications Through a PrivacyLens. Alternate Behaviors Two applications demonstrating different behaviors depending upon what attributes are released.

Applications Through a PrivacyLens. Alternate Behaviors Two applications demonstrating different behaviors depending upon what attributes are released.
TF-Mobility. Rome, October 2009 A Few Ideas on eduroam Service Composition.

TF-Mobility. Rome, October 2009 A Few Ideas on eduroam Service Composition.
Role Based Access Control Venkata Marella. Access Control System Access control is the ability to permit or deny the use of a particular resource by a.

Role Based Access Control Venkata Marella. Access Control System Access control is the ability to permit or deny the use of a particular resource by a.
Computer Security: Principles and Practice EECS710: Information Security Professor Hossein Saiedian Fall 2014 Chapter 4: Access Control.

Computer Security: Principles and Practice EECS710: Information Security Professor Hossein Saiedian Fall 2014 Chapter 4: Access Control.
1 Attribute-Based Access Control Models and Beyond Prof. Ravi Sandhu Executive Director, Institute for Cyber Security Lutcher Brown Endowed Chair in Cyber.

1 Attribute-Based Access Control Models and Beyond Prof. Ravi Sandhu Executive Director, Institute for Cyber Security Lutcher Brown Endowed Chair in Cyber.
P247. Figure 9-1 p248 Figure 9-2 p251 p251 Figure 9-3 p253.

P247. Figure 9-1 p248 Figure 9-2 p251 p251 Figure 9-3 p253.
Role Based Access control By Ganesh Godavari. Outline of the talk Motivation Terms and Definitions Current Access Control Mechanism Role Based Access.

Role Based Access control By Ganesh Godavari. Outline of the talk Motivation Terms and Definitions Current Access Control Mechanism Role Based Access.
Lecture slides prepared for “Computer Security: Principles and Practice”, 2/e, by William Stallings and Lawrie Brown, Chapter 4 “Overview”.

Lecture slides prepared for “Computer Security: Principles and Practice”, 2/e, by William Stallings and Lawrie Brown, Chapter 4 “Overview”.
Li Xiong CS573 Data Privacy and Security Access Control.

Li Xiong CS573 Data Privacy and Security Access Control.
Using Active Directory for Authorizations CSG, September 2002.

Using Active Directory for Authorizations CSG, September 2002.
1 A Role Based Administration Model For Attribute Xin Jin, Ram Krishnan, Ravi Sandhu SRAS, Sep 19, 2012 World-Leading Research with Real-World Impact!

1 A Role Based Administration Model For Attribute Xin Jin, Ram Krishnan, Ravi Sandhu SRAS, Sep 19, 2012 World-Leading Research with Real-World Impact!

Similar presentations

Ads by Google