Presentation is loading. Please wait.

Presentation is loading. Please wait.

A Flexible Access Control Service for Java Mobile Code HPCC lab 문 정 아.

Published byKenneth Dennis Modified over 8 years ago

Similar presentations

Presentation on theme: "A Flexible Access Control Service for Java Mobile Code HPCC lab 문 정 아."— Presentation transcript:

1 A Flexible Access Control Service for Java Mobile Code HPCC lab 문 정 아

2 MC (Mobile Code) Tech in Internet Security Concern  design & development of comprehensive access control frameworks Static & Dynamic 1. Introduction

3 2. How To Control Mobile Code - To control MC behavior Development time control  “Safe” programming languages  Proof Carrying Code Run-time access control mechanism  Sandbox technique  JDK 1.2 security architecture  Safe-Tcl security framework Simple access control lists (ACLs)

4 . 2. How To Control Mobile Code - Lan-based solutions (to separate policy from access control implementation) Logic-based declarative languages Procedural languages Other languages (combining procedural & declarative rules)

5 3. Flexible Access Control Requirements for Mobile Code In mobile applications, MA is automatic tasks  retrieval, processing of patient records Patient records retrieval initiated from Mobile system Strict controls on the interactions between MAs & medical DB

6 A patient’s primary physician is allowed to read & modify the patient’s records; A physician collaborating with the patient primary physician can read (but not modify) the records only if the patient has explicitly authorized him; A hospital nurse can view only the records of patients currently in the ward where she is on duty, and only during duty hours ; 3. Examples of healthcare applications

7 4. The Ponder Language for Flexible Access Control Policies For Policy specification Expressiveness Simplicity Analysability Policy Authorisation

8 Ex> auth+ RecordAccess { subjects = primary_physicians; target r = patient_records; Action view, modify; When member(s, r.caring_physicians()); } 4.1. Authorisations

9 Ex> Type auth+ RecordAccess(subject s, target t) { action view, modify; When member(s, r.caring_physicians()); } inst auth+r1 = RecordAccess(hospital1/physicians, hospital1/records); r2 = RecordAccess(hospital2/paediatricians, hospital2/child-records); }

10 4.2. Filtering Type auth+ FilteredRecordAccess(subject s, target t) { action view() if containsExternalNodes(s.itinerary){ result = reject({“PatientName”, “Address”}, result); }

11 4.3. Policy Groups and Roles Type role surgery_nurse (ward) extends nurse(ward) { constraint workHours = time.between(0800,1700); Attended_patient(p) = member(p, ward) ; inst auth+nurse_access{ action view(p); target patient_records; when workHours and attended_patient(p); }

12 5. A Flexible Access Control Service for Mobile Code Policy Specification Component (PSC) Policy Retrieval Component (PRC) Permission Checking Component (PCC) Filtering Executor Component (FEC)

13 5.1 The Java Access Control Architecture Java security architecture relies on building components Policy object Class Loader Access controller Security manager

14 5.2 How to Map Ponder Policies into Java Policy Editor Policy compiler Analysis Tool Browser Tool Structuring Tool Analysis Tool Semantic Analyzer Code Generator Java Policies

15 5.3 The Enforcement of Ponder Policies MA loading : permission assignment MA access resource : run-time permission evaluation

16 5.3 The Enforcement of Ponder Policies Permission assignment Current agent execution env. class loader PRC Coordinate with 발견된 모든 policy 를 Appropriate protection domain 에 insert!! 발견된 모든 policy 를 Appropriate protection domain 에 insert!!

17 5.3 The Enforcement of Ponder Policies Run-time permission evaluation Proxy-based mechanism  Incoming agents provides instead access proxies & same resource interface. Proxy coordinate with the PCC & FEC  MCcheckPermission  MCfilter

18 5.4 Implementation Issues MCcheckPermission Access Controller Class checkPermission PonderPermission implies Call

19 5.4 Implementation Issues i.e> in application MA calls new(FileInputStream(FileName)) JDK 1.2 package FileInputStream constructor PonderFilePermission checkPermission Call Solution (to support constraints with java & appropriate constraint checking): Customisability property of the java SecurityManager class. ( i.e. checkPermission method ) Solution (to support constraints with java & appropriate constraint checking): Customisability property of the java SecurityManager class. ( i.e. checkPermission method )

20 6. Conclusion

21 THANK YOU FOR YOUR ATTENTION !

Download ppt "A Flexible Access Control Service for Java Mobile Code HPCC lab 문 정 아."

Similar presentations

An Adaptive Policy-Based Framework for Network Service Management Leonidas Lymberopoulos Emil Lupu Morris Sloman Department of Computing Imperial College.

An Adaptive Policy-Based Framework for Network Service Management Leonidas Lymberopoulos Emil Lupu Morris Sloman Department of Computing Imperial College.
Towards Remote Policy Enforcement for Runtime Protection of Mobile Code Using Trusted Computing Xinwen Zhang Francesco Parisi-Presicce Ravi Sandhu www.list.gmu.edu.

Towards Remote Policy Enforcement for Runtime Protection of Mobile Code Using Trusted Computing Xinwen Zhang Francesco Parisi-Presicce Ravi Sandhu
Mobile Code Security Yurii Kuzmin. What is Mobile Code? Term used to describe general-purpose executables that run in remote locations. Web browsers come.

Mobile Code Security Yurii Kuzmin. What is Mobile Code? Term used to describe general-purpose executables that run in remote locations. Web browsers come.
Architecture Representation

Architecture Representation
Mobile Code Security Aviel D. Rubin, Daniel E. Geer, Jr. MOBILE CODE SECURITY, IEEE Internet Computing, 1998 Minkyu Lee 2007. 04. 23.

Mobile Code Security Aviel D. Rubin, Daniel E. Geer, Jr. MOBILE CODE SECURITY, IEEE Internet Computing, 1998 Minkyu Lee
Lab Information Security Using Java (Review) Lab#0 Omaima Al-Matrafi.

Lab Information Security Using Java (Review) Lab#0 Omaima Al-Matrafi.
1 JAC : Aspect Oriented Programming in Java An article review by Yuval Nir and Limor Lahiani.

1 JAC : Aspect Oriented Programming in Java An article review by Yuval Nir and Limor Lahiani.
H28.1 6-Apr-01 Clark Thomborson Software Security CompSci 725 Handout 28: Report Writing #2 (Sample Titles & Abstracts) Clark Thomborson University of.

H Apr-01 Clark Thomborson Software Security CompSci 725 Handout 28: Report Writing #2 (Sample Titles & Abstracts) Clark Thomborson University of.
Presented by: Thabet Kacem Spring 2010. Outline Contributions Introduction Proposed Approach Related Work Reconception of ADLs XTEAM Tool Chain Discussion.

Presented by: Thabet Kacem Spring Outline Contributions Introduction Proposed Approach Related Work Reconception of ADLs XTEAM Tool Chain Discussion.
Lab#1 (14/3/1431h) Introduction To java programming cs425

Lab#1 (14/3/1431h) Introduction To java programming cs425
Model-Driven Design and Administration of Access Control in Enterprise Applications April 2005.

Model-Driven Design and Administration of Access Control in Enterprise Applications April 2005.
Component Patterns – Architecture and Applications with EJB copyright © 2001, MATHEMA AG Component Patterns Architecture and Applications with EJB JavaForum.

Component Patterns – Architecture and Applications with EJB copyright © 2001, MATHEMA AG Component Patterns Architecture and Applications with EJB JavaForum.
8th Workshop Software Engineering Education and Reverse Engineering, Durres RFAgent – an eLearning Supporting Tool Asya Stoyanova-Doycheva University.

8th Workshop "Software Engineering Education and Reverse Engineering", Durres RFAgent – an eLearning Supporting Tool Asya Stoyanova-Doycheva University.
SEERE, Neum 2009 Runtime verification of Java programs using ITL Vladimir Valkanov, Damyan Mitev Plovdiv, Bulgaria.

SEERE, Neum 2009 Runtime verification of Java programs using ITL Vladimir Valkanov, Damyan Mitev Plovdiv, Bulgaria.
LAB#2 JAVA SECURITY OVERVIEW Prepared by: I.Raniah Alghamdi.

LAB#2 JAVA SECURITY OVERVIEW Prepared by: I.Raniah Alghamdi.
1 Extensible Security Architectures for Java Authors: Dan S.Wallch, Dirk Balfanz Presented by Moonjoo Kim.

1 Extensible Security Architectures for Java Authors: Dan S.Wallch, Dirk Balfanz Presented by Moonjoo Kim.
Automated Analysis and Code Generation for Domain-Specific Models George Edwards Center for Systems and Software Engineering University of Southern California.

Automated Analysis and Code Generation for Domain-Specific Models George Edwards Center for Systems and Software Engineering University of Southern California.
Confined Types Encapsulation and modularity Seminar November, 2005 presented by: Guy Gueta.

Confined Types Encapsulation and modularity Seminar November, 2005 presented by: Guy Gueta.
Complex Security Policies Dave Andersen Advanced Operating Systems Georgia State University.

Complex Security Policies Dave Andersen Advanced Operating Systems Georgia State University.
1 Subspace: Secure Cross Domain Communication for Web Mashups Collin Jackson and Helen J. Wang Mamadou H. Diallo.

1 Subspace: Secure Cross Domain Communication for Web Mashups Collin Jackson and Helen J. Wang Mamadou H. Diallo.

Similar presentations

Ads by Google