Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Access Control Policies: Modeling and Validation Luigi Logrippo & Mahdi Mankai Université du Québec en Outaouais.

Published byHoward Newman Modified over 8 years ago

Similar presentations

Presentation on theme: "1 Access Control Policies: Modeling and Validation Luigi Logrippo & Mahdi Mankai Université du Québec en Outaouais."— Presentation transcript:

1 1 Access Control Policies: Modeling and Validation Luigi Logrippo & Mahdi Mankai Université du Québec en Outaouais

2 2 Overview Introduction XACML overview A Logical Model of XACML Modeling with Alloy Access Control Verification and Validation Related Work Conclusion

3 3 Introduction Access control policies languages –XACML –EPAL –PONDER –… Possible inconsistencies within policies How to solve inconsistencies at execution time –Precedence rules –Priorities How to detect inconsistencies at design time –First-order logic –Model-checking tools

4 4 An example A policy 1.A professor can read or modify the file of course marks 2.A student can read the file of course marks 3.A student cannot modify the file of course marks Question: –A subject that is both student and professor wants to modify the file of course marks –Will his request be accepted of refused? Users and administrators should know about these potential inconsistencies  avoid security leaks, denial of service and unauthorized access Subject

5 5 XACML overview eXtensible Access Control Markup language : an OASIS standard Architecture, policies and messages Policy Enforcement Point Policy Decision Point

6 6 XACML Request

7 7 XACML Structures A syntax based on XML to define Access Control –Rules –Policies –Policy sets Rule 13 Rule 11 Rule 12 Policy 1 Rule 23 Rule 21 Rule 22 Policy 2 PolicySet

8 8 Targets and Conditions Not all policies are applied to a request Targets define the applicability of policy sets, policies and rules Conditions are additional and more complex filters Rule 1 Rule N Policy1 Rule 1 Rule N Policy2 Request

9 9 Rules Rule –Rule Target –Effect –Condition (optional) (Luigi): Je ne suis pas certain de la signification de ceci...

10 10 Targets A policy 1.A professor can read or modify the file of course marks 2.A student can read the file of course marks 3.A student cannot modify the file of course marks Rule 2 is applied when (target) –Subject’s role is “student” –Resource’s name is “course marks” –Action’s name is “read” Request : a student Bob wants to read the file of course marks –Rule 2 is applied but not Rule1 nor Rule 3

11 11 Target subject resource action

12 12 Combining Algorithms Mechanisms to resolve conflicts online Example: –Bob is PhD student and an assistant professor, –he wants to modify the file of course marks Permit-overrides : Permit Deny-Overrides : Deny First-Applicable : Permit (Rule 1 appears before Rule 3 in an xml file) Only-one-applicable : Indeterminate (Error)

13 13 A Logical Model of XACML Use of sets, relations and functions Structures and constraints use of Alloy syntax Alloy –Modeling language –Analyzer tool –Relational first-order logic

14 14 Alloy Structural –Signature –Relation Declarative –first-order logic –facts, predicates, functions, and assertions Analyzable –Simulation and automatic verification –run predicate –check assertion

15 15 Examples: Request Sets Relations

16 16 Basic structures Inheritance as subsetting

17 17 Structures Expliquer couleurs

18 18 Constraints Use of functions and predicates First order logic

19 19 Constraints a predicate that evaluates a request against a target to check whether the target matches the request

20 20 Constraints A function that returns the response of a given rule regarding a given request

21 21 Combining Algorithms

22 22 Verification and Validation Check properties Use of predicates and assertions Examples 1.An example of a rule returning a permit response regarding a specific request  an example? 2.Inconsistency: different rules within the same policy return different decisions (permit and deny)  an example? 3.Access should always be granted to a professor requesting modification  a counterexample?

23 23 Access Control Policy –Rule1 : A professor can read or modify the file of course marks –Rule2 : A student can read the file of course marks –Rule3 : A student cannot modify the file of course marks

24 24 Example 1 An example of a rule returning a permit response regarding a specific request

25 25 Example 1 Rule2 is applied and returns a permit when a students requests a read access on course marks file

26 26 Example 2 Inconsistency: different rules within the same policy return different decision (permit and deny)

27 27 Example 2 Both rule1 and rule3 are applied when –a subject with both professor and student role tries to modify the file of course marks –rule3's response is permit –rule3's response is deny

28 28 Example 3 Access should always be granted to a professor (and not student requesting modification Alloy doesn't find any solution

29 29 Related work MTBDDs to verify XACML policies Conflicts detection tools for PONDER RW  verification  XACML Other logical approaches

30 30 Conclusion XACML validation and verification using model-checking and first-order logic Only a subset of XACML was covered A translation tool for transforming XACML policies to Alloy specifications

31 31 Future work GUI to permit clear visualization of XACML rules –More intuitive syntax than XACML GUI to permit editing XACML –Without touching XACML code directly GUI to display the results of the analysis in user-friendly format –Immediately after editing

Download ppt "1 Access Control Policies: Modeling and Validation Luigi Logrippo & Mahdi Mankai Université du Québec en Outaouais."

Similar presentations

Access control for geospatial information objects using/extending the eXtensible Access Control Markup Language Andreas Matheus, Technische Universität.

Access control for geospatial information objects using/extending the eXtensible Access Control Markup Language Andreas Matheus, Technische Universität.
News in XACML 3.0 and application to the cloud Erik Rissanen, Axiomatics

News in XACML 3.0 and application to the cloud Erik Rissanen, Axiomatics
1 Authorization XACML – a language for expressing policies and rules.

1 Authorization XACML – a language for expressing policies and rules.
Tutorial 12: Enhancing Excel with Visual Basic for Applications

Tutorial 12: Enhancing Excel with Visual Basic for Applications
Administrative Policies in XACML Erik Rissanen Swedish Institute of Computer Science.

Administrative Policies in XACML Erik Rissanen Swedish Institute of Computer Science.
Process Model for Access Control Wael Hassan University of Ottawa Luigi Logrippo, Université du Québec en Outaouais.

Process Model for Access Control Wael Hassan University of Ottawa Luigi Logrippo, Université du Québec en Outaouais.
Authz work in GGF David Chadwick

Authz work in GGF David Chadwick
XACML 2.0 and Earlier Hal Lockhart, Oracle. What is XACML? n XML language for access control n Coarse or fine-grained n Extremely powerful evaluation.

XACML 2.0 and Earlier Hal Lockhart, Oracle. What is XACML? n XML language for access control n Coarse or fine-grained n Extremely powerful evaluation.
An Investigation into Filtering of Search Results by Access Constraints Gert Schmeltz Pedersen and Christian Tønsberg Technical Information Technical.

An Investigation into Filtering of Search Results by Access Constraints Gert Schmeltz Pedersen and Christian Tønsberg Technical Information Technical.
Governance Policies for Privacy Access and their Interactions ICFI-2005 Waël Hassan 1 & Luigi Logrippo 2 1 University of Ottawa School of information technology.

Governance Policies for Privacy Access and their Interactions ICFI-2005 Waël Hassan 1 & Luigi Logrippo 2 1 University of Ottawa School of information technology.
XEngine: A Fast and Scalable XACML Policy Evaluation Engine Fei Chen Dept. of Computer Science and Engineering Michigan State University Joint work with.

XEngine: A Fast and Scalable XACML Policy Evaluation Engine Fei Chen Dept. of Computer Science and Engineering Michigan State University Joint work with.
10.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.

10.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.
Using UML and Alloy to Specify and Analyze Access Control Features Eunjee Song, Xi Hua SP05-CS681 Project Proposal.

Using UML and Alloy to Specify and Analyze Access Control Features Eunjee Song, Xi Hua SP05-CS681 Project Proposal.
95-804 Applied Cryptography Week 13 SAML 1 95-804 Applied Cryptography SAML and XACML Mike McCarthy Week 13.

Applied Cryptography Week 13 SAML Applied Cryptography SAML and XACML Mike McCarthy Week 13.
FI-WARE – Future Internet Core Platform FI-WARE Security July 2011 High-level Description.

FI-WARE – Future Internet Core Platform FI-WARE Security July 2011 High-level Description.
A Heterogeneous Network Access Service based on PERMIS and SAML Gabriel López Millán University of Murcia EuroPKI Workshop 2005.

A Heterogeneous Network Access Service based on PERMIS and SAML Gabriel López Millán University of Murcia EuroPKI Workshop 2005.
XACML By Ganesh Godavari Craig Peltier. Information Sharing Information Sharing relates to the sharing of information between two or more entities. Entities.

XACML By Ganesh Godavari Craig Peltier. Information Sharing Information Sharing relates to the sharing of information between two or more entities. Entities.
Extended Role Based Access Control – Based Design and Implementation for a Secure Data Warehouse Dr. Bhavani Thuraisingham Srinivasan Iyer.

Extended Role Based Access Control – Based Design and Implementation for a Secure Data Warehouse Dr. Bhavani Thuraisingham Srinivasan Iyer.
Audumbar. Access control and privacy Who can access what, under what conditions, and for what purpose.

Audumbar. Access control and privacy Who can access what, under what conditions, and for what purpose.
Combining KMIP and XACML. What is XACML? XML language for access control Coarse or fine-grained Extremely powerful evaluation logic Ability to use any.

Combining KMIP and XACML. What is XACML? XML language for access control Coarse or fine-grained Extremely powerful evaluation logic Ability to use any.

Similar presentations

Ads by Google