access control mechanisms
play

Access Control Mechanisms Week 6 1 CEN-5079: 7.March.2019 Why - PowerPoint PPT Presentation

Sep 11, 2022 •36 likes •596 views

Access Control Mechanisms Week 6 1 CEN-5079: 7.March.2019 Why Access Control Following authentication, we need to decide what the subject can access 1 Read F 1 OK 2 Bob Write to F Alice 2 F NO ! 3 Execute G G 3 OK

  1. Access Control Mechanisms Week 6 1 CEN-5079: 7.March.2019

  2. Why Access Control  Following authentication, we need to decide what the subject can access 1 Read F 1’ OK 2 Bob Write to F Alice 2’ F NO ! 3 Execute G G 3’ OK  How do we store this information? 2 CEN-5079: 7.March.2019

  3. In this lecture …  Access matrix model  Access control lists versus Capabilities  Role Based Access Control  File Protection Mechanisms  Security Policies  Models of Security  Some exercises 3 CEN-5079: 7.March.2019

  4. Access Matrix Model (Lampson 1971) Objects (and Subjects) G F r w x S S S r A u u u b b b j j j e e e r w x c c c rights B t t t s s s 4 CEN-5079: 7.March.2019

  5. Basic Abstractions  Subjects  Objects  Rights  The rights in a cell specify the access of the subject (row) to the object (column) 5 CEN-5079: 7.March.2019

  6. Users and Subjects  A subject is a program (application) executing on behalf of a user  A user may at any time be idle, or have one or more subjects executing on her behalf 6 CEN-5079: 7.March.2019

  7. Users and Subjects: Example Mail Application Word Processors Spreadsheet Bob.SECRET Database App USERS SUBJECTS 7 CEN-5079: 7.March.2019

  8. Objects  Anything on which a subject can perform operations (mediated by rights)  Usually objects are passive, for example:  File  Directory (or Folder)  Memory segment  But, objects can also be subjects with operations  kill  suspend  resume 8 CEN-5079: 7.March.2019

  9. Access Matrix Model Objects (and Subjects) G F r w x S S S r A u u u b b b j j j e e e r w x c c c rights B t t t s s s 9 CEN-5079: 7.March.2019

  10. Access Matrix Implementation  Access Matrix can be sparse  Space inefficient  Access Control Lists  Capabilities  Relations 10 CEN-5079: 7.March.2019

  11. Access Control List - ACL  Maintained for each object (or subject)  No entries when no permissions G: ACL A B B B r r w x Each column of the access matrix is stored with the object corresponding to that column 11 CEN-5079: 7.March.2019

  12. Capability  Unforgeable token that gives possesor certain rights  Object to which access is permitted  Right for the object Capability giving the right to r F read object F  How to make it unforgeable 1. Only OS can access capability – user gets a pointer 2. Signed capabilities – access control mechanism has key 12 CEN-5079: 7.March.2019

  13. Transfer Capability  One access right – transfer/propagate  Subject can pass copy of capability to others Capability giving the right to t F transfer capabilities for object F Carol can no longer transfer ! transfer transfer Carol Alice Bob r t t r r F F F F F 13 CEN-5079: 7.March.2019

  14. Capability List: C-List r F F w x G r F Alice Each row of the access matrix is stored with the subject corresponding to that row 14 CEN-5079: 7.March.2019

  15. Access Control Relations Subject Access Object A r F A w F A x F A r G B r G B w G B x G Commonly used in relational database management systems 15 CEN-5079: 7.March.2019

  16. In this lecture …  Access matrix model  Access control lists versus Capabilities  Role Based Access Control  File Protection Mechanisms  Security Policies  Models of Security  Some exercises 16 CEN-5079: 7.March.2019

  17. ACLs vs. Capabilities  ACL's require authentication of subjects  Capabilities do not require authentication of subjects, but do require  Unforgeability  Control of propagation of capabilities 17 CEN-5079: 7.March.2019

  18. ACLs vs. Capabilities: Access Review  ACL's provide for superior access review on a per-object basis  Who has access to this object  But hard to see to what a subject has access  How would you do that ?  Capabilities provide for superior access review on a per-subject basis  What capabilities does this subject have  But hard to see who has access to an object 18 CEN-5079: 7.March.2019

  19. ACLs vs. Capabilities: Revocation  How do you revoke access of a subject to an object  ACL's provide for superior revocation facilities on a per-object basis 1. Scan object’s ACL 2. Remove subject from list (if present)  But hard to revoke all rights of a subject  Capabilities provide for superior revocation facilities on a per-subject basis  But hard to revoke all rights on an object (for all subjects) 19 CEN-5079: 7.March.2019

  20. ACLs vs. Capabilities: In the Real World  The per-object basis usually wins  Most OSs protect files by means of ACL's  Operations centered on objects  Unix: use an abbreviated form of ACL's with just three entries • owner • group • other 20 CEN-5079: 7.March.2019

  21. In this lecture …  Access matrix model  Access control lists versus Capabilities  Role Based Access Control  File Protection Mechanisms  Security Policies  Models of Security  Some exercises 21 CEN-5079: 7.March.2019

  22. Role Based Access Control (RBAC) Permission-Role User-Role Assignment Assignment USERS PERMISSIONS ROLES  A user’s permissions are determined by the user’s roles  Rather than identity or clearance  Roles can encode arbitrary attributes 22 CEN-5079: 7.March.2019

  23. Basic RBAC User-Role Permission-Role Assignment Assignment USERS ROLES PERMISSIONS ... SESSIONS 23 CEN-5079: 7.March.2019

  24. Permissions  Similar to capabilities  Object on which permission is granted  Right granted  Primitive rights  read, write, append, execute  Permissions are positive  No negative permissions or denials 24 CEN-5079: 7.March.2019

  25. Roles as Policy  A role brings together  A collection of users and  A collection of permissions  Different from groups  Groups are often defined as …  A collection of users 25 CEN-5079: 7.March.2019

  26. Users  Human beings or  Other active agents  Each individual should be known as exactly one user  User-Role Assignment  A user can have many roles  Each role can be assigned to many users  Sessions  A user can invoke multiple sessions  In each session a user can invoke any subset of roles that the user is a member of 26 CEN-5079: 7.March.2019

  27. Permission-Role Assignment User-Role Permission-Role Assignment Assignment USERS ROLES PERMISSIONS  A permission can be assigned to many roles  Each role can have many permissions 27 CEN-5079: 7.March.2019

  28. More Complex RBAC: Role Hierarchies Role Hierarchies Permission-Role User-Role Assignment Assignment USERS ROLES PERMISSIONS ... SESSIONS 28 CEN-5079: 7.March.2019

  29. Role Hierarchy: Example 1 Specialist Primary-Care Physician Physician Physician Health-Care Provider 29 CEN-5079: 7.March.2019

  30. Role Hierarchy: Example 2 Supervising Engineer Hardware Software Engineer Engineer Engineer 30 CEN-5079: 7.March.2019

  31. Role Hierarchy: Example 3 Director (DIR) Project Lead 1 Project Lead 2 (PL1) (PL2) Production 1 Quality 1 Production 2 Quality 2 (P1) (Q1) (P2) (Q2) Engineer 1 Engineer 2 (E1) (E2) Engineering Department (ED) PROJECT 1 PROJECT 2 Employee (E) 31 CEN-5079: 7.March.2019

  32. In this lecture …  Access matrix model  Access control lists versus Capabilities  Role Based Access Control  File Protection Mechanisms  Security Policies  Models of Security  Some exercises 32 CEN-5079: 7.March.2019

  33. File Protection Mechanisms  Multi-user system  Protect files from other users 1. All-None Protection 2. Group Protection 3. Temporary Acquired Permission 33 CEN-5079: 7.March.2019

  34. All-None Protection  Original IBM  By default, files were public  Anyone could r, w, del any file  Users assumed  Trustworthy  Know only their files’ names  Sysadmin could password protect certain files  So could users  Main Problem: Lack of trust 34 CEN-5079: 7.March.2019

  35. Group Protection  Unix systems: three classes  The user  Group of users associated with user - group  The rest of users – world  Groups  Members that share a common interest  Need to share  User can only belong to one group  User belonging to groups A and B  Can pass files from group A to group B 35 CEN-5079: 7.March.2019

  36. Group Protection (cont’d)  For each created file, the user  Assigns permissions for user, group, world  From the set r, w, x  Example: rwx rw- r--  Chmod 764 filename  Suitable for paper shared by group  Main Problem: User can belong to one group 36 CEN-5079: 7.March.2019

  37. Temporary Acquired Permissions  Unix systems  set userid (suid)  Only for executable files  If set, the file executes with the permissions of the owner, not the executor  Example:  passwd – operation that changes user passwd  Only the system can change passwords – access the password file  But users should be able to invoke passwd  passwd is suid: it executes with system privileges 37 CEN-5079: 7.March.2019

Recommend

Access Control Access Control 1 Access Control Access control : ensures that all direct

Access Control Access Control 1 Access Control Access control : ensures that all direct

Access Control Access Control 1 Access Control Access control : ensures that all direct accesses to object are authorized a scheme for mapping users to allowed actions Protection objects : system resources for which protection is

576 views • 21 slides
Access Control and Protection Overview Access control: What and Why Abstract Models of

Access Control and Protection Overview Access control: What and Why Abstract Models of

Access Control and Protection Overview Access control: What and Why Abstract Models of Access Control Discretionary acces control Mandatory access control Real systems: Unix Access Control Model Access control Access

817 views • 47 slides
CS419 Spring 2010 Computer Security Access Control: Policies and Mechanisms Vinod Ganapathy

CS419 Spring 2010 Computer Security Access Control: Policies and Mechanisms Vinod Ganapathy

CS419 Spring 2010 Computer Security Access Control: Policies and Mechanisms Vinod Ganapathy Lectures 9 and 10 Access Control The prevention of unauthorized use of a resource, including the prevention of use of a resource in an

1.17k views • 90 slides
Access Control Jackson Argo Rackspace MO After-hours April 28, 2016 What is Access Control?

Access Control Jackson Argo Rackspace MO After-hours April 28, 2016 What is Access Control?

Access Control Jackson Argo Rackspace MO After-hours April 28, 2016 What is Access Control? How Is Access Determined? Who Determines Access? Forms of Access Control SELinux Booleans iptables File Access Control Lists Apache Access Control

711 views • 36 slides
1 Why Why flow flow control? control? sender

1 Why Why flow flow control? control? sender

Lecture 7. Lecture 7. TCP mechanisms for: TCP mechanisms for: data transfer control / flow control error control congestion control Graphical examples (applet java) of several algorithms at:

589 views • 13 slides
1 General Access Control General Access Control Control of access to memory relatively easy:

1 General Access Control General Access Control Control of access to memory relatively easy:

Role of Access Control Before closing back doors we need to close front doors Access control: determines access to files & processes in OS Fall 2008 We will return to these themes throughout the course Fall 2008 CS

512 views • 6 slides
CSE 510 Web Data Engineering Access Control Authentication & Authorization UB CSE 510 Web

CSE 510 Web Data Engineering Access Control Authentication & Authorization UB CSE 510 Web

CSE 510 Web Data Engineering Access Control Authentication & Authorization UB CSE 510 Web Data Engineering Access Control Mechanisms Declarative Authorization using Realms The expression of app security external to the app

540 views • 26 slides
SYSTEM DIAGRAMS Door Entry & Access Control ACCESS CONTROL ACCESS CONTROL Allowing

SYSTEM DIAGRAMS Door Entry & Access Control ACCESS CONTROL ACCESS CONTROL Allowing

SYSTEM DIAGRAMS Door Entry & Access Control ACCESS CONTROL ACCESS CONTROL Allowing residents / staff access to site areas Main entrance Vehicle entrances Pedestrian entrances Gate / Barrier entrance Bin / Bike / Refuge

336 views • 14 slides
Flow-Secure Access Controls Integration of Simple flow controls into the access control

Flow-Secure Access Controls Integration of Simple flow controls into the access control

Flow-Secure Access Controls Integration of Simple flow controls into the access control mechanisms of say operating systems. General: p can read from x1,. . . , xm and write into Y1, . . . . Yn only if This automatically

1.06k views • 36 slides
Access Control Lists in Linux & Windows Vasudevan Nagendra & Yaohui Chen Fall 2014:: CSE

Access Control Lists in Linux & Windows Vasudevan Nagendra & Yaohui Chen Fall 2014:: CSE

Fall 2014:: CSE 506:: Section 2 (PhD) Access Control Lists in Linux & Windows Vasudevan Nagendra & Yaohui Chen Fall 2014:: CSE 506:: Section 2 (PhD) Categorization: Access Control Mechanisms Discretionary Access Control (DAC): Owner

1k views • 33 slides
Overview Basic Principles Access Control Methodologies Controls Access Control Designs

Overview Basic Principles Access Control Methodologies Controls Access Control Designs

Overview Basic Principles Access Control Methodologies Controls Access Control Designs Access Control Administration Accountability Chapter 2 Access Control Models Identification and Authentication Methods Lecturer:

708 views • 9 slides
Lecture 5: Media Access Control CSE 123: Computer Networks Chris Kanich Quiz 1 today Lecture 5

Lecture 5: Media Access Control CSE 123: Computer Networks Chris Kanich Quiz 1 today Lecture 5

Lecture 5: Media Access Control CSE 123: Computer Networks Chris Kanich Quiz 1 today Lecture 5 Overview Methods to share physical media: multiple access Fixed partitioning Random access Channelizing mechanisms

264 views • 8 slides
Outline Unix-style access control, contd CSci 5271 Multilevel and mandatory access control

Outline Unix-style access control, contd CSci 5271 Multilevel and mandatory access control

Outline Unix-style access control, contd CSci 5271 Multilevel and mandatory access control Introduction to Computer Security Access control, contd Announcements intermission Stephen McCamant Capability-based access control University

380 views • 7 slides
D2: Access Control #2: Access cess Contr trol ol Similar to OWASP Top 10 Insufficient

D2: Access Control #2: Access cess Contr trol ol Similar to OWASP Top 10 Insufficient

D2: Access Control #2: Access cess Contr trol ol Similar to OWASP Top 10 Insufficient access control and authentication checks Insecure access control methods Private, internal functions and data are accessible through a

547 views • 11 slides
Smart.Net-IP NETWORKED ACCESS CONTROL Smart.Net-IP NETWORKED ACCESS CONTROL Smart.Net-IP is a

Smart.Net-IP NETWORKED ACCESS CONTROL Smart.Net-IP NETWORKED ACCESS CONTROL Smart.Net-IP is a

Smart.Net-IP NETWORKED ACCESS CONTROL Smart.Net-IP NETWORKED ACCESS CONTROL Smart.Net-IP is a simple, modular approach to networked access control with scalability in mind. Easy management from a central location PC from anywhere with an

196 views • 9 slides
Access Control Chester Rebeiro Indian Institute of Technology Madras Access Control (the tao of

Access Control Chester Rebeiro Indian Institute of Technology Madras Access Control (the tao of

Access Control Chester Rebeiro Indian Institute of Technology Madras Access Control (the tao of achieving confiden5ality and integrity) Who can access What Objects : Subjects : Files/ Programs/ Sockets/ User/ process/ applica5on Hardware/

985 views • 46 slides
Outline Basics of access control Unix-style access control CSci 5271 Introduction to Computer

Outline Basics of access control Unix-style access control CSci 5271 Introduction to Computer

Outline Basics of access control Unix-style access control CSci 5271 Introduction to Computer Security Announcements intermission Day 10: OS security: access control Multilevel and mandatory access control Stephen McCamant University of

324 views • 10 slides
Access Control Chester Rebeiro Indian Institute of Technology Madras Access Control (the tao of

Access Control Chester Rebeiro Indian Institute of Technology Madras Access Control (the tao of

Access Control Chester Rebeiro Indian Institute of Technology Madras Access Control (the tao of achieving confidentiality and integrity) Who can access What Objects : Subjects : Files/ Programs/ Sockets/ User/ process/ application

1.31k views • 50 slides
Healthcare professionals experiences with EHR-system access

Healthcare professionals experiences with EHR-system access

Healthcare professionals experiences with EHR-system access control mechanisms Arild FAXVAAG a, , Trond S JOHANSEN a , Vigdis HEIMLY b , Line MELBY a and Anders

501 views • 23 slides
Insecure Direct Object Reference IDOR ( Broken Access Control ) IDOR ( Broken Access Control ) ~#

Insecure Direct Object Reference IDOR ( Broken Access Control ) IDOR ( Broken Access Control ) ~#

Insecure Direct Object Reference IDOR ( Broken Access Control ) IDOR ( Broken Access Control ) ~# whoami Eric Biako Bsc. IT, CEH v9 Information security officer @ E-connecta Moderator @ https://legalhackmen.com IDOR ( Broken Access Control )

517 views • 12 slides
Access Control SecAppDev 2016 Maarten Decat maarten.decat@kuleuven.be @maartendecat What is

Access Control SecAppDev 2016 Maarten Decat maarten.decat@kuleuven.be @maartendecat What is

Access Control SecAppDev 2016 Maarten Decat maarten.decat@kuleuven.be @maartendecat What is access control? Access control is the part of security that constrains the actions that are performed in a system based on access control rules .

1.4k views • 113 slides
1 Types of Power-Saving MACs The Sensor MAC (S-MAC) Three distinct classes of power-saving

1 Types of Power-Saving MACs The Sensor MAC (S-MAC) Three distinct classes of power-saving

What Is Media Access Control? Media Access Control (MAC) determines who gets access to the shared medium, and when Media Access Control In wired settings, usually just tries to avoid Greg Hackmann contention In wireless settings, can

399 views • 7 slides
Control Structures in C Overview 1)Logic & Logical Operators 2)Selection Mechanisms if

Control Structures in C Overview 1)Logic & Logical Operators 2)Selection Mechanisms if

Control Structures in C Overview 1)Logic & Logical Operators 2)Selection Mechanisms if elseif else switch 3)Loop Mechanisms 1 Logic and Selection In English (Natural Language) we can make statements such as: If it snows I stay

688 views • 37 slides
Security+ Guide to Network Security Fundamentals, Third Edition Chapter 7 Access Control

Security+ Guide to Network Security Fundamentals, Third Edition Chapter 7 Access Control

Security+ Guide to Network Security Fundamentals, Third Edition Chapter 7 Access Control Fundamentals Objectives Define Access Controls List the four Access Control Models Describe logical Access Control Methods Explain the

128 views • 8 slides

More recommend