lecture a
play

Lecture A Motivation The model, informally The formal model Other - PowerPoint PPT Presentation

Mar 01, 2024 •471 likes •946 views

Lecture A Motivation The model, informally The formal model Other thoughts February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-1 Matt Bishop, UC Davis Overview What is recordation? Why do it electronically? Models

  1. Lecture A • Motivation • The model, informally • The formal model • Other thoughts February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-1 Matt Bishop, UC Davis

  2. Overview • What is recordation? • Why do it electronically? • Models and recordation • Example: approach and problems February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-2 Matt Bishop, UC Davis

  3. Recordation • Recording title to real property – Real estate purchases • Recording liens, etc . – Mortgage holders and such • In California, County Recorders do this – No standards other than statutory ones – No state office oversees them February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-3 Matt Bishop, UC Davis

  4. Goals of Recordation • Establish title • Establish priority of liens, etc . • Protection of Public – Permanence of records – Fraud prevention (no secret conveyance, etc .) • Recording triggers release of funds – It’s the official record of property ownership February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-4 Matt Bishop, UC Davis

  5. Requirements of a Solution 1. A signed document cannot be altered (although new signatures may be appended); 2. A document may require multiple signatures; 3. A document submitted to the recorder’s office may be revoked by any signatory until the document is recorded, but is no longer eligible for additional signatures; 4. The recorder may only append information to the document ( i.e. , sign it); and 5. If the document is recorded, it becomes a public record immutable to all parties. February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-5 Matt Bishop, UC Davis

  6. How to Record Something Submission – Presentation of documents to recorder Validation – Check for conformance with statutory requirements – Calculate fees Storage – Record documents, index and provide locators – Filming and/or imaging the documents to create archival record Return documents February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-6 Matt Bishop, UC Davis

  7. Modeling the Process • Confidentiality not an issue – Exception: some fees may be • Integrity a critical issue – Originator must be able to file document – Document must be correct, legal – Document immutable • Availability may, may not be issue February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-7 Matt Bishop, UC Davis

  8. Electronic Commerce • Model many are trying to use, but there are substantial differences: – Emphasis on privacy inappropriate – Nothing exchanged (no non-fungible property involved) – Not immutable; you can erase an electronic transaction – Does not establish title – Does not deal with liens February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-8 Matt Bishop, UC Davis

  9. Traducement • Model designed for electronic recordation – a signed document cannot be altered (although new signatures may be appended) – a document may require multiple signatures – a document submitted to the recorder’s office may be revoked by any signatory until the document is recorded, but additional signatures may not be added – the recorder may only append information to the document (i.e., sign it) – if the document is recorded, it becomes a public record immutable to all parties. February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-9 Matt Bishop, UC Davis

  10. Key Notions • Publishing document – Cannot modify it further – Making it available to larger community • Signing document – Associates authors with documents • Common to legal documents – Unusual in other documents February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-10 Matt Bishop, UC Davis

  11. Entities • Subjects – Authors contribute in some way to the document to be filed – Recorders attest to the completion of document, converting it into official record • Objects – Documents to be filed February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-11 Matt Bishop, UC Davis

  12. Definitions • Author set AS – Attribute of object that specifies set of users who wrote to object – No author can be removed from author set • Signer set SS – Attribute that specifies users who approve the object, contents – Any reader can add themselves to this set February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-12 Matt Bishop, UC Davis

  13. Create Rule • User u creates object o : – o indelibly stamped with creation time – o '( AS ) = { u } – o '( SS ) = ∅ February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-13 Matt Bishop, UC Davis

  14. Alteration Rule • User u alters object o : – o '( AS ) = { u } ∪ o ( AS ) – o '( SS ) = ∅ February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-14 Matt Bishop, UC Davis

  15. Signature Rule • User u signs object o : – o '( AS ) = o ( AS ) – o '( SS ) = { u } ∪ o ( SS ) February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-15 Matt Bishop, UC Davis

  16. Example • Peter drafts document – d ( AS ) = { Peter }, d ( SS ) = ∅ • Paul approves – d ( AS ) = { Peter }, d ( SS ) = { Paul } • Mary makes some changes – d ( AS ) = { Peter, Mary }, d ( SS ) = ∅ • Everyone says it’s fine – d ( AS ) = { Peter, Mary } – d ( SS ) = { Peter, Paul, Mary} February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-16 Matt Bishop, UC Davis

  17. Copy Rule • User u copies object o to O : – O '( AS ) = o ( AS ) – O '( SS ) = o ( SS ) February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-17 Matt Bishop, UC Davis

  18. Proposition • A user is in the signer set of an object if and only if the document has not been modified since the user was added to the signer set. • Proof ( ⇒ ) Let u ∈ o ( SS ). Creation, alteration rules set o ( SS ) = ∅ ; by induction, not used. Signature, copy do not alter o ( SS ). February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-18 Matt Bishop, UC Davis

  19. Proof ( con’t ) • Proof ( ⇐ ) Assume o not modified since u added to o ( SS ). • Signature or copy rule applied • Signature rule adds to o ( SS ); does not delete any elements • Copy rule copies original o ( SS ); does not delete any elements • Induction gives the result February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-19 Matt Bishop, UC Davis

  20. Preconditions 1. Each document in the system has an author set list identifying all users who created or modified that document 2. Each document in the system has a signer set list identifying all users who approve that document. February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-20 Matt Bishop, UC Davis

  21. Theorem • If a system satisfies the preconditions, then the system still satisfies the preconditions after any sequence of applications of the creation, alteration, signature, and copy rules. • Proof : Let a system satisfy preconditions in state s 0 . Apply one of the rules to transition to state s 1 . February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-21 Matt Bishop, UC Davis

  22. Applying Rules • Create rule – New document created; o ( AS ) is creator only (#1 met) and o ( SS ) empty (#2 met) • Alteration rule – Add user to o ( AS ), so o ( AS ) contains only new user, members of old o ( AS ) (#1 met); o ( SS ) cleared, so no-one has approved of it (#2 met) February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-22 Matt Bishop, UC Davis

  23. Applying Rules • Signature rule – Document not changed so o ( AS ) not changed (#1 met); add signer to o ( SS ), as signer approves of (unchanged) document (#2 met) • Copy rule – Create new instance of document, so no changes (#1 met); signers approved of content and no changes to that (#2 met) February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-23 Matt Bishop, UC Davis

  24. Basic Security Theorem • Analogue to Bell-LaPadula BST • Define secure : – System meeting preconditions is secure • Idea of theorem: – Begin in secure state – Apply transitions (rules) – Resulting system in secure state February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-24 Matt Bishop, UC Davis

  25. Theorem Let R be a rule, s be a state of a system, and s' be the state obtained by applying R to s . Let the system in state s satisfy Preconditions 1 and 2, and let O and O' be the set of objects in states s and s' , respectively. Then: 1. If there is an object o ' such that o' ∉ O a) b) o' ∈ O' O' = O ∪ { o' } c) d) o' ( AS ) = { u } for some subject u e) o' ( SS ) = ∅ then s' satisfies Preconditions 1 and 2. February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-25 Matt Bishop, UC Davis

  26. Theorem 2. If there is an object o ∈ O such that a) o' ( AS ) = { u } ∪ o ( AS ) for some subject u b) o' ( SS ) = ∅ then s' satisfies Preconditions 1 and 2. 3. If there is an object o ∈ O such that a) o' ( AS ) = o ( AS ) b) o' ( SS ) = { u } ∪ o ( SS ) for some subject u then s' satisfies Preconditions 1 and 2. February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-26 Matt Bishop, UC Davis

  27. Theorem 4. If there is an object x' ∈ O' such that: a) x' ∉ O b) there is an object o ∈ O c) x' ( AS ) = o ( AS ) d) x' ( SS ) = o ( SS ) then s' satisfies Preconditions 1 and 2. February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-27 Matt Bishop, UC Davis

Recommend

Lecture # 5 - Monday, Aug 30th In this lecture I reviewed the previous lecture 4, and then

Lecture # 5 - Monday, Aug 30th In this lecture I reviewed the previous lecture 4, and then

Lecture # 5 - Monday, Aug 30th In this lecture I reviewed the previous lecture 4, and then reviewed the final point of lecture #3: Hennigs logical approach to tree inference is valid as logic, but we have a hard time using it because our data

660 views • 7 slides
Algorithms (2IL15) Lecture 13 Wrap-up lecture 1 TU/e Algorithms (2IL15) Lecture 13

Algorithms (2IL15) Lecture 13 Wrap-up lecture 1 TU/e Algorithms (2IL15) Lecture 13

TU/e Algorithms (2IL15) Lecture 13 Algorithms (2IL15) Lecture 13 Wrap-up lecture 1 TU/e Algorithms (2IL15) Lecture 13 Part I of the course: Optimization Problems we want to find valid solution minimizing cost (or maximizing

904 views • 20 slides
In 2020SP, this lecture and lecture 20 are both optional extra material CS 5412/LECTURE 17 Ken

In 2020SP, this lecture and lecture 20 are both optional extra material CS 5412/LECTURE 17 Ken

In 2020SP, this lecture and lecture 20 are both optional extra material CS 5412/LECTURE 17 Ken Birman LEAVE NO TRACE BEHIND Spring, 2020 HTTP://WWW.CS.CORNELL.EDU/COURSES/CS5412/2020SP 1 THE PRIVACY PUZZLE FOR I O T We have sensors

1.04k views • 65 slides
Recall last lecture ... Lecture 8 Also last lecture: Painter's Algorithm More Hidden Surface

Recall last lecture ... Lecture 8 Also last lecture: Painter's Algorithm More Hidden Surface

Recall last lecture ... Lecture 8 Also last lecture: Painter's Algorithm More Hidden Surface Removal Sort polygons in depth. Use the farthest vertex in each polygon as the sorting key. Efficient Painter - binary space partition (BSP)

563 views • 6 slides
Plan Lecture 1 - String diagrams and symmetric monoidal categories Lecture 2 -

Plan Lecture 1 - String diagrams and symmetric monoidal categories Lecture 2 -

Plan Lecture 1 - String diagrams and symmetric monoidal categories Lecture 2 - Resource-sensitive algebraic theories Lecture 3 - Interacting Hopf monoids and graphical linear algebra Lecture 4 - Signal Flow Graphs and recurrence

1.2k views • 61 slides
Where are we at - Topic overview Lecture 1A: Security requirements/features Lecture 7A

Where are we at - Topic overview Lecture 1A: Security requirements/features Lecture 7A

Where are we at - Topic overview Lecture 1A: Security requirements/features Lecture 7A Threatens Privacy Threatens Try to achieve Lecture 2B: Network threats Lecture 3A: Attacks on Lecture 6A: Security Protocols Web servers, malware

381 views • 25 slides
Lecture Capture Introduction to Lecture Capture Learning Outcomes What will lecture capture

Lecture Capture Introduction to Lecture Capture Learning Outcomes What will lecture capture

ISDS & Digital Business Skills Lecture Capture Introduction to Lecture Capture Learning Outcomes What will lecture capture actually do? What happens before a lecture? What happens during a lecture? What does the button do?

527 views • 18 slides
CSE 158 Lecture 4 Web Mining and Recommender Systems More Classifiers Last lecture How

CSE 158 Lecture 4 Web Mining and Recommender Systems More Classifiers Last lecture How

CSE 158 Lecture 4 Web Mining and Recommender Systems More Classifiers Last lecture How can we predict binary or categorical variables? {0,1}, {True, False} {1, , N} Last lecture Will I purchase this product? (yes) Will I click

1.74k views • 60 slides
CSE 158 Lecture 4 Web Mining and Recommender Systems More Classifiers Last lecture How

CSE 158 Lecture 4 Web Mining and Recommender Systems More Classifiers Last lecture How

CSE 158 Lecture 4 Web Mining and Recommender Systems More Classifiers Last lecture How can we predict binary or categorical variables? {0,1}, {True, False} {1, , N} Last lecture Will I purchase this product? (yes) Will I click

850 views • 46 slides
CSE 158 Lecture 4 Web Mining and Recommender Systems More Classifiers Last lecture How

CSE 158 Lecture 4 Web Mining and Recommender Systems More Classifiers Last lecture How

CSE 158 Lecture 4 Web Mining and Recommender Systems More Classifiers Last lecture How can we predict binary or categorical variables? {0,1}, {True, False} {1, , N} Last lecture Will I purchase this product? (yes) Will I click

839 views • 58 slides
Usability of Programming Languages Lecture 4 - directed by your research interests Lecture

Usability of Programming Languages Lecture 4 - directed by your research interests Lecture

Overview Practical experimental course lectures are only introductory Lecture 1 - theoretical principles classic approaches l h current trends in leading research. Lecture 2 - candidate research methods advantages and

499 views • 15 slides
Introduction to AI & Intelligent Agents This Lecture Chapters 1 and 2 Next Lecture

Introduction to AI & Intelligent Agents This Lecture Chapters 1 and 2 Next Lecture

Introduction to AI & Intelligent Agents This Lecture Chapters 1 and 2 Next Lecture Chapter 3.1 to 3.4 (Please read lecture topic material before and after each lecture on that topic) What is Artificial Intelligence? Thought

636 views • 31 slides
Introduction to Numerical Optimization Biostatistics 615/815 Lecture 14 Lecture 14 Course is

Introduction to Numerical Optimization Biostatistics 615/815 Lecture 14 Lecture 14 Course is

Introduction to Numerical Optimization Biostatistics 615/815 Lecture 14 Lecture 14 Course is More Than Half Done! If you have comments they are very welcome y y Lectures Lecture notes Weekly Homework Midterm

795 views • 42 slides
Lecture 12: Clustering 1 6.0002 LECTURE 12 Re Reading Chapter 23 6.0002 LECTURE 12 2 Mach Ma

Lecture 12: Clustering 1 6.0002 LECTURE 12 Re Reading Chapter 23 6.0002 LECTURE 12 2 Mach Ma

Lecture 12: Clustering 1 6.0002 LECTURE 12 Re Reading Chapter 23 6.0002 LECTURE 12 2 Mach Ma chine e Lea earn rning Paradigm Observe set of examples: training data Infer something about process that generated that data Use

847 views • 36 slides
Lecture Outline Regeltechniek Previous lecture: Stability and transient response. Lecture 4

Lecture Outline Regeltechniek Previous lecture: Stability and transient response. Lecture 4

Lecture Outline Regeltechniek Previous lecture: Stability and transient response. Lecture 4 Basics of Feedback Control Robert Babu ska Today: Steady-state response. Delft Center for Systems and Control Faculty of Mechanical

388 views • 7 slides
Psycholinguistics Lecture 2 By Dr.Chelli Lecture Objectives At the end of this lecture, students

Psycholinguistics Lecture 2 By Dr.Chelli Lecture Objectives At the end of this lecture, students

Psycholinguistics Lecture 2 By Dr.Chelli Lecture Objectives At the end of this lecture, students will be able to: Discuss the different stages in the history of psycholinguistics Identify the scholars in the field of psycholinguistics

589 views • 28 slides
Methodology for Lecture Methodology for Lecture Computer Graphics (Spring 2008) Computer

Methodology for Lecture Methodology for Lecture Computer Graphics (Spring 2008) Computer

Methodology for Lecture Methodology for Lecture Computer Graphics (Spring 2008) Computer Graphics (Spring 2008) Lecture deals with lighting (teapot shaded as in HW1) Some Nate Robbins tutor demos in lecture COMS 4160, Lecture 14: OpenGL

535 views • 5 slides
Lecture Outline Regeltechniek Previous lecture: Nyquist plot and stability criterion. Lecture 11

Lecture Outline Regeltechniek Previous lecture: Nyquist plot and stability criterion. Lecture 11

Lecture Outline Regeltechniek Previous lecture: Nyquist plot and stability criterion. Lecture 11 State-space models and state feedback control (We are finished with frequency domain methods.) Robert Babu ska Today: Delft Center for

452 views • 6 slides
CSE Fall 2014 311 Lecture 1 Lecture 1 Lecture 1: Propositional Logic Lecture 1 Foundations

CSE Fall 2014 311 Lecture 1 Lecture 1 Lecture 1: Propositional Logic Lecture 1 Foundations

CSE 311: Foundations of Computing I CSE Fall 2014 311 Lecture 1 Lecture 1 Lecture 1: Propositional Logic Lecture 1 Foundations of Computing I Fall 2014 Some Perspective About the Course We will study the theory needed for CSE: Computer

242 views • 7 slides
Proteomics Steven Meinhardt Lectures Lecture 1 Introduction review of proteins

Proteomics Steven Meinhardt Lectures Lecture 1 Introduction review of proteins

11/29/2012 Proteomics Steven Meinhardt Lectures Lecture 1 Introduction review of proteins Lecture 2 Gel Electrophoresis Lecture 3 Mass Spectrometry Lecture 4 Programs for MS analysis Lecture 5 MIAPE (Minimum

900 views • 8 slides
Multiphase Modelling in Cancer Helen Byrne Wolfson Centre for Mathematical Biology Mathematical

Multiphase Modelling in Cancer Helen Byrne Wolfson Centre for Mathematical Biology Mathematical

Lecture 1 Lecture 2 Lecture 3 Lecture 4 Multiphase Modelling in Cancer Helen Byrne Wolfson Centre for Mathematical Biology Mathematical Institute University of Oxford CRM, Barcelona, April 2018 Lecture 1 Lecture 2 Lecture 3 Lecture 4

1.79k views • 141 slides
Lecture 1: Neurons Lecture 2: Coding with spikes Lecture 3: Tuning curves and receptive fields

Lecture 1: Neurons Lecture 2: Coding with spikes Lecture 3: Tuning curves and receptive fields

Lecture 1: Neurons Lecture 2: Coding with spikes Lecture 3: Tuning curves and receptive fields Lecture 4: Population vectors To gain a basic understanding of how population vectors are constructed 4 credit students: First assignment is

584 views • 31 slides
Algorithms (2IL15) Lecture 10 NP-Completeness, II 1 TU/e Algorithms (2IL15) Lecture 10

Algorithms (2IL15) Lecture 10 NP-Completeness, II 1 TU/e Algorithms (2IL15) Lecture 10

TU/e Algorithms (2IL15) Lecture 10 Algorithms (2IL15) Lecture 10 NP-Completeness, II 1 TU/e Algorithms (2IL15) Lecture 10 Summary of previous lecture P: class of decision problems that can be solved in polynomial time NP:

496 views • 34 slides
Lecture 1: Bioinformatic Algorithms In this lecture Logistics of the course

Lecture 1: Bioinformatic Algorithms In this lecture Logistics of the course

Lecture 1: Bioinformatic Algorithms In this lecture Logistics of the course Introduction to basic biology which will continue in the following lecture Logistics of the Course Logistics About the Course Christina Boucher: (email)

546 views • 40 slides

More recommend