CSC 474/574 Information Systems Security

Similar documents
The R BAC96 RBAC96 M odel Model Prof. Ravi Sandhu

Access Control Mechanisms

Administration of RBAC

Access Control. Discretionary Access Control

Access Control Models Part II

CS 356 Lecture 7 Access Control. Spring 2013

Advanced Access Control. Role-Based Access Control. Common Concepts. General RBAC Rules RBAC96

Information Security CS 526

General Access Control Model for DAC

Discretionary Access Control (DAC)

Access Control. Discretionary Access Control

Chapter 4: Access Control

CSE Computer Security

Access Control Models

Access control models and policies. Tuomas Aura T Information security technology

Discretionary Vs. Mandatory

Module 4: Access Control

CS590U Access Control: Theory and Practice. Lecture 12 (February 23) Role Based Access Control

Chapter 7: Hybrid Policies

Policy, Models, and Trust

A Framework for Enforcing Constrained RBAC Policies

Introduction p. 1 The purpose and fundamentals of access control p. 2 Authorization versus authentication p. 3 Users, subjects, objects, operations,

Policy Machine PRESENTED BY: SMRITI BHATT

IBM Security Identity Manager Version Planning Topics IBM

Core Role Based Access Control (RBAC) mechanism for MySQL

Access control models and policies

Access control models and policies

Instructor: Jinze Liu. Fall 2008

Data Security and Privacy. Topic 8: Role Based Access Control

Computer Security. Access control. 5 October 2017

Introduction to Security

Chapter 9: Database Security: An Introduction. Nguyen Thi Ai Thao

Identity, Authentication and Authorization. John Slankas

CS 591: Introduction to Computer Security. Lecture 3: Policy

Computer Security 3e. Dieter Gollmann. Chapter 5: 1

Information Security & Privacy

Discretionary Access Control (DAC)

RBAC: Motivations. Users: Permissions:

CUNY John Jay College of Criminal Justice MATH AND COMPUTER SCIENCE

CSC/ECE 774 Advanced Network Security

Label-Based Access Control: An ABAC Model with Enumerated Authorization Policy

Efficient Role Based Access Control Method in Wireless Environment

Last time. User Authentication. Security Policies and Models. Beyond passwords Biometrics

INSE 6160 Database Security and Privacy

CIS433/533 - Introduction to Computer and Network Security. Access Control

INSE 6130 Operating System Security

CSC Network Security

Secure Role-Based Workflow Models

Overview of db design Requirement analysis Data to be stored Applications to be built Operations (most frequent) subject to performance requirement

Full file at

Outlines. Design of A Role -based Trustmanagement. Permission-based (capability-style) What We Mean by Trust- Management? Systems?

HGABAC: Towards a Formal Model of Hierarchical Attribute-Based Access Control

Building Information Modeling and Digital Data Exhibit

Textbook Charles Petzold, Programming Windows, 5th edition, Microsoft Press. References - other textbooks or materials none

Mobile and Heterogeneous databases Security. A.R. Hurson Computer Science Missouri Science & Technology

Attribute-Based Access Control Models

The instructions here- in outline the process(es) for grading group wikis.

Guest Wireless Policy

UT HEALTH SAN ANTONIO HANDBOOK OF OPERATING PROCEDURES

Implementing and Maintaining Microsoft SQL Server 2005 Analysis Services

CCM Lecture 12. Security Model 1: Bell-LaPadula Model

Copyright 2016 Ramez Elmasri and Shamkant B. Navathe

Complex Access Control. Steven M. Bellovin September 10,

CONSTRAINTS AND UPDATES CHAPTER 3 (6/E) CHAPTER 5 (5/E)

For 100% Result Oriented IGNOU Coaching and Project Training Call CPD TM : ,

Access Control (slides based Ch. 4 Gollmann)

WHITEPAPER. Compliance with ITAR and Export Controls in Collaboration Systems

CONSTRAINTS AND UPDATES CHAPTER 3 (6/E) CHAPTER 5 (5/E)

Role-based administration of user-role assignment: The URA97 model and its Oracle implementation

Graphical Interface and Application (I3305) Semester: 1 Academic Year: 2017/2018 Dr Antoun Yaacoub

IT ACCEPTABLE USE POLICY

Access-Control Policies via Belnap logic: expressive composition and simple analysis

8.3 Mandatory Flow Control Models

INF 111 / CSE 121. Homework 3: Code Reading

Related download: Instructor Manual for Modern Database Management 12th Edition by Hoffer Venkataraman Topi (Case studies included)

Software Model Checking: Theory and Practice

Post-Class Quiz: Access Control Domain

Relational Calculus: 1

The University Registrar s office will supply you with a USER ID and an initial PIN.

SOME TYPES AND USES OF DATA MODELS

Chapter 14: Protection. Operating System Concepts 9 th Edition

Conflict Checking of Separation of Duty Constraints in RBAC - Implementation Experiences

1/24/2012. Chapter 7 Outline. Chapter 7 Outline (cont d.) CS 440: Database Management Systems

Auckland District SUPPORT SERVICES Board Policy Health Board (Section 7) Manual ELECTRONIC MAIL

Acceptable Use and Publishing Policy

Chapter 11 Object and Object- Relational Databases

Report Documentation Page

Week 10 Part A MIS 5214

CSC 742 Database Management Systems

ECE 152A LABORATORY 2

SARS Anywhere Administration Manual Section 6: Miscellaneous Settings - 1

CS590U Access Control: Theory and Practice. Lecture 18 (March 10) SDSI Semantics & The RT Family of Role-based Trust-management Languages

CS 377 Database Systems

CSN11111 Network Security

CSE 3241: Database Systems I Databases Introduction (Ch. 1-2) Jeremy Morris

Access control. Frank Piessens KATHOLIEKE UNIVERSITEIT LEUVEN

Sakai Forums.

Essentials of Database Management (Hoffer et al.) Chapter 2 Modeling Data in the Organization

COLORADO DEPARTMENT OF LABOR AND EMPLOYMENT Arapahoe Street Denver, CO

DATABASE SECURITY AND PRIVACY. Some slides were taken from Database Access Control Tutorial, Lars Olson, UIUC CS463, Computer Security

Transcription:

CSC 474/574 Information Systems Security Topic 4.4 Role-Based Access Control (RBAC) 1 OUTLINE Role-based Access Control Motivation Features Models Issues 2 1

OWNER-BASED DAC owner has all-or-nothing power superuser fallacy spaghetti of intent negative permissions make for messier spaghetti Trojan horses can subvert intent 3 MAC/Lattice-Based AC/BLP enforce one-directional information flow in a lattice of security labels can be used for confidentiality integrity aggregation (Chinese Wall) combinations of these 4 2

RBAC A user s permissions are determined by the user s roles rather than identity (DAC) or clearance (MAC) roles can encode arbitrary attributes Facilitates administration of permissions articulation of policy ranges from very simple to very sophisticated 5 RBAC Policy neutral Policy oriented least privilege separation of duties encapsulation of primitive permissions Roles are a semantic construct around which to build policy 6 3

RBAC Two traditions Support system-wide administrative functions Programmed into individual applications 7 RBAC: WHAT S NEW Extend system support into application domain Use RBAC to manage RBAC 8 4

INTERACTION OF RBAC, MAC AND DAC RBAC MAC DAC permitted accesses 9 RBAC MODELS RBAC96 Family RBAC0: Basic Model RBAC1: Hierarchical Roles RBAC2: Constrained Roles RBAC3: RBAC1 + RBAC2 10 5

RBAC96 FAMILY RBAC3 ROLE HIERARCHIES + CONSTRAINTS RBAC1 ROLE HIERARCHIES RBAC2 CONSTRAINTS RBAC0 VANILLA RBAC 11 RBAC3 ROLE HIERARCHIES USER-ROLE ASSIGNMENT PERMISSIONS-ROLE ASSIGNMENT USERS ROLES PERMISSIONS... SESSIONS CONSTRAINTS 12 6

USERS Users are human beings or other active agents Each individual should be known as exactly one user 13 ROLES AS POLICY A role brings together a collection of users and a collection of permissions These collections will vary over time A role has significance and meaning beyond the particular users and permissions brought together at any moment 14 7

ROLES VERSUS GROUPS Groups are often defined as a collection of users A role is a collection of users and a collection of permissions Some authors define role as a collection of permissions 15 HIERARCHICAL ROLES Director (DIR) Project Lead 1 (PL1) Project Lead 2 (PL2) Production 1 (P1) Quality 1 (Q1) Production 2 (P2) Quality 2 (Q2) Engineer 1 (E1) Engineer 2 (E2) PROJECT 1 Engineering Department (ED) PROJECT 2 Employee (E) 16 8

PERMISSIONS Primitive permissions read, write, append, execute Abstract permissions credit, debit, inquiry 17 PERMISSIONS System permissions auditorobject permissions read, write, append, execute, credit, debit, inquiry 18 9

PERMISSIONS Permissions are positive No negative permissions or denials negative permissions and denials can be handled by constraints No duties or obligations outside scope of access control 19 USER-ROLE ASSIGNMENT A user can be a member of many roles Each role can have many users as members 20 10

IMPLICIT USER ASSIGNMENT USER explicit assignment ROLE HIERARCHY implicit assignments 21 EXPLICIT USER ASSIGNMENT USER explicit assignment NO ROLE HIERARCHY explicit assignments 22 11

PERMISSION-ROLE ASSIGNMENT A permission can be assigned to many roles Each role can have many permissions 23 SESSIONS A user can invoke multiple sessions In each session a user can invoke any subset of roles that the user is a member of 24 12

CONSTRAINTS Applied to all components in RBAC Example : Mutually Exclusive Roles Static Exclusion: The same individual can never hold both roles Dynamic Exclusion: The same individual can never hold both roles in the same context 25 Exercise 1 Consider an on-line grading system. TAs can view (V) and add (A) everybody s grade; Instructors can add (A), update (U), and view (V) everybody s grade. 26 13

Exercise 1 (Cont d) Assume a generic framework of RBAC0. Customize it for the following class: Instructor: Peng Ning (PN); TA: Kun Sun (KS) Students: John Smith (JS), Jane Davis (JD), Bret Moore (BM) Users = {,,,, } Roles = {, } Permissions = {,, } PermissionAssignments = {(, ), (, ), (, ), (, ), (, )} UserAssignments = {(, ), (, )} Sessions = {, } (Assume two sessions. No unique solution.) Users (S U):, Roles (S 2 R ): { }, { } 27 Exercise 1 (Cont d) How about RBAC1? Customize it for the following class: Instructor: Peng Ning (PN); TA: Kun Sun (KS) Students: John Smith (JS), Jane Davis (JD), Bret Moore (BM) What can be changed? Role hierarchy: 28 14

Exercise 2 Consider an on-line grading system. Each student can only view his/her own grade; TAs can view and add everybody s grade; Instructors can add, update (i.e., modify), and view everybody s grade. 29 Exercise 2 (Cont d) Assume a generic framework of RBAC0. Customize it for the following class: Instructor: Peng Ning (PN) TA: Kun Sun (KS) Students: John Smith (JS), Jane Davis (JD), Bret Moore (BM) Users = {,,,, } Roles =? Permissions =? PermissionAssignments =? UserAssignments =? What are the difficulties? 30 15

Exercise 2 (Cont d) How about RBAC2? Customize it for the following class: Instructor: Peng Ning (PN) TA: Kun Sun (KS) Students: John Smith (JS), Jane Davis (JD), Bret Moore (BM) Assume there exists a global variable user-name that stores the name of the activated user. Users = {,,,, } Roles = {,, } Permissions = {V(student-name),, } PermissionAssignments = {(, ), (, ), (, ), (, ), (, ), (, )} PA constraint: UserAssignments = { } 31 16

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback