Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Dept of Information and Communication Technology Creating Objects in Flexible Authorization Framework ¹ Dep. of Information and Communication Technology,

Published byAlison Reed Modified over 8 years ago

Similar presentations

Presentation on theme: "1 Dept of Information and Communication Technology Creating Objects in Flexible Authorization Framework ¹ Dep. of Information and Communication Technology,"— Presentation transcript:

1 1 Dept of Information and Communication Technology Creating Objects in Flexible Authorization Framework ¹ Dep. of Information and Communication Technology, University of Trento ² Center for Secure Information Systems, George Mason University Nicola Zannone, ¹ ² Sushil Jajodia, ² Duminda Wijesekera ²

2 2 Dept of Information and Communication Technology Talk Outline  Creating objects in Access Control Framework  Conditions for creating objects  Authorizations on derived objects  Flexible Authorization Framework  Information Flow Control  Conclusion

3 3 Dept of Information and Communication Technology Access Control  Essential for building secure information systems  Protect the confidentiality of information  An authorization is a triple of the form (o, s, a)  (o, s, +a): subject s is allowed to execute action a on object o  (o, s, −a): subject s is denied to execute action a on object o  Authorization frameworks manage access to data  Is a subject entitled to execute an action on an object?  But...

4 4 Dept of Information and Communication Technology Creating Objects  Information systems support data processing for manipulating information  The output of data processing can be seen as a new object  Represent data processing as function  e. g.,  s is the subject who wants to perform the data processing  are the objects required by the data processing  o is the output of the data processing  In order to protect data, we should answer  Is the subject s entitled to create the derived object o?  Who is authorized to access the derived object o?

5 5 Dept of Information and Communication Technology Conditions for Creating Objects  Subjects need to access objects required by data processing  Specific domain conditions for determining who is entitled to execute data processing  e.g. users that play a certain role or belong to a certain group  Make explicit the conditions under which a subject can perform data processing   C represents the condition that must be satisfied  means that object o cannot be created

6 6 Dept of Information and Communication Technology Authorizations on Derived Objects  Once an object has been created, an access control policy should be associated with the object  The derived object is not independent from the objects used to derived it  The access control policy is defined on the basis of the authorizations associated with the objects used to derive it

7 7 Dept of Information and Communication Technology Flexible Authorization Framework (FAF)  Proposed by Jajodia et al. [TODS 2001]  Logic-based framework developed to manage access to data  Determine if a user can execute an action on an object  For any access request, exactly one decision (allowed/denied) is provided  Based on a language through which users can specify security policies to be enforced on specific accesses  allow specification of positive and negative authorizations  incorporate notions of authorization propagation, conflict resolution, and decision strategies

8 8 Dept of Information and Communication Technology FAF Architecture

9 9 Dept of Information and Communication Technology Semantics & Materialization  A FAF specification forms a locally stratified logic program  It has a unique stable model  Access requests should be authorized or denied very fast  Materialization algorithm reconstructs the unique stable model  Computed in polynomial time on data complexity

10 10 Dept of Information and Communication Technology When should objects be created? objects cannot be created since required authorizations might be not yet computed authorizations on derived objects are not propagated

11 11 Dept of Information and Communication Technology A New Architecture

12 12 Dept of Information and Communication Technology Computational Issues  The new architecture does not preserve the locally stratified structure of the specification, but...  Introducing syntactic constraints  Verify existence of objects  Distinguish the iteration in which objects are derived (i.e., materialization view of each iteration)  Every authorization specification is a locally stratified program   literals in refer to objects created at the i-th iteration  Preserve FAF computational results  Stable model can be computed in polynomial time

13 13 Dept of Information and Communication Technology Derivation Tree  Information systems manipulate information  The outcome of a data processing can be seen as a new object  The outcome of a data processing may be used as input for other data processing  The process to derive an object can be seen as a tree  Root is the “final” object  Leaves are primitive objects (i.e. objects not derived by using functions)  Edges keep trace of the process used to create objects

14 14 Dept of Information and Communication Technology Derivation Tree

15 15 Dept of Information and Communication Technology Information Flow Control  Information systems may release information as part of their functionalities  Derived objects contain information belonging to the objects used to derive it  So they disclose information about the objects used to create it  Need to introduce information flow control  Ensure that information are not disclosed to unauthorized entities  The policy associated with the object is the intersection of the policies associated with the objects used to derive it  Integrity constraint module  Define warning constraints to detect unauthorized information flow

16 16 Dept of Information and Communication Technology Information Flow Control ? ????

17 17 Dept of Information and Communication Technology Some Exceptions  Some information must be disclosed for satisfying availability requirements  Privacy Act allows an agency to disclose data without the consent of the data owner to those officer and employees of the agency who need the data to perform their duties  The system administrator may be perfectly happy with a system that does not satisfy all warning constraints  Notice that Warning ≠ Error

18 18 Dept of Information and Communication Technology Verification Process 1.The authorization framework spots warnings when leaks are detected 2.The system administrator has to decide if  the leak complies with system requirements or  the leak corresponds to a system vulnerability 3. The system administrator will fix system vulnerabilities

19 19 Dept of Information and Communication Technology Conclusion  Support for object creation  Verify permissions for creating objects  Automatically derive access control policies for derived objects  Formalization of the process for enforcing access control policies concerning derived objects  Mechanisms for detecting information leakage

Download ppt "1 Dept of Information and Communication Technology Creating Objects in Flexible Authorization Framework ¹ Dep. of Information and Communication Technology,"

Similar presentations

QUN NI 1, SHOUHUAI XU 2, ELISA BERTINO 1, RAVI SANDHU 2, AND WEILI HAN 3 1 PURDUE UNIVERSITY USA 2 UT SAN ANTONIO USA 3 FUDAN UNIVERSITY CHINA PRESENTED.

QUN NI 1, SHOUHUAI XU 2, ELISA BERTINO 1, RAVI SANDHU 2, AND WEILI HAN 3 1 PURDUE UNIVERSITY USA 2 UT SAN ANTONIO USA 3 FUDAN UNIVERSITY CHINA PRESENTED.
Operating System Security

Operating System Security
SOFTWARE TESTING. INTRODUCTION  Software Testing is the process of executing a program or system with the intent of finding errors.  It involves any.

SOFTWARE TESTING. INTRODUCTION  Software Testing is the process of executing a program or system with the intent of finding errors.  It involves any.
Supervisory Control of Hybrid Systems Written by X. D. Koutsoukos et al. Presented by Wu, Jian 04/16/2002.

Supervisory Control of Hybrid Systems Written by X. D. Koutsoukos et al. Presented by Wu, Jian 04/16/2002.
Ranking of security controlling strategies driven by quantitative threat analysis. Tavolo 2: Big data security evaluation UNIFI-CNR Nicola Nostro, Andrea.

Ranking of security controlling strategies driven by quantitative threat analysis. Tavolo 2: "Big data security evaluation" UNIFI-CNR Nicola Nostro, Andrea.
Lakshmi Narayana Gupta Kollepara 10/26/2009 CSC-8320.

Lakshmi Narayana Gupta Kollepara 10/26/2009 CSC-8320.
Giorgini P., EuroPKI 20041 Filling the gap between Requirements Engineering and Public Key/Trust Management Infrastructures Paolo Giorgini Department of.

Giorgini P., EuroPKI Filling the gap between Requirements Engineering and Public Key/Trust Management Infrastructures Paolo Giorgini Department of.
Access Control Methodologies

Access Control Methodologies
Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.

Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.
8.2 Discretionary Access Control Models Weiling Li.

8.2 Discretionary Access Control Models Weiling Li.
Database Management System

Database Management System
Access Control Intro, DAC and MAC System Security.

Access Control Intro, DAC and MAC System Security.
On Comparing the Expressing Power of Access Control Model Frameworks Workshop on Logical Foundations of an Adaptive Security Infrastructure (WOLFASI) A.

On Comparing the Expressing Power of Access Control Model Frameworks Workshop on Logical Foundations of an Adaptive Security Infrastructure (WOLFASI) A.
Chapter 4: Security Policies Overview The nature of policies What they cover Policy languages The nature of mechanisms Types Secure vs. precise Underlying.

Chapter 4: Security Policies Overview The nature of policies What they cover Policy languages The nature of mechanisms Types Secure vs. precise Underlying.
Chapter 2 Access Control Fundamentals. Chapter Overview Protection Systems Mandatory Protection Systems Reference Monitors Definition of a Secure Operating.

Chapter 2 Access Control Fundamentals. Chapter Overview Protection Systems Mandatory Protection Systems Reference Monitors Definition of a Secure Operating.
1 Clark Wilson Implementation Shilpa Venkataramana.

1 Clark Wilson Implementation Shilpa Venkataramana.
ITIS 3200: Introduction to Information Security and Privacy Dr. Weichao Wang.

ITIS 3200: Introduction to Information Security and Privacy Dr. Weichao Wang.
Distributed Computer Security 8.2 Discretionary Access Control Models - Liang Zhao.

Distributed Computer Security 8.2 Discretionary Access Control Models - Liang Zhao.
Lecture 7 Access Control

Lecture 7 Access Control
Distributed Computer Security 8.2 Discretionary Access Control Models - Sai Phalgun Tatavarthy.

Distributed Computer Security 8.2 Discretionary Access Control Models - Sai Phalgun Tatavarthy.

Similar presentations

Ads by Google