schematized access control for data cubes and trees
play

Schematized Access Control for Data Cubes and Trees Claudio Marxer - PowerPoint PPT Presentation

Dec 29, 2022 •256 likes •332 views

Schematized Access Control for Data Cubes and Trees Claudio Marxer Christian Tschudin < claudio.marxer@unibas.ch > < christian.tschudin@unibas.ch > Computer Networks Group University of Basel Switzerland ACM ICN 17, Berlin

  1. Schematized Access Control for Data Cubes and Trees Claudio Marxer Christian Tschudin < claudio.marxer@unibas.ch > < christian.tschudin@unibas.ch > Computer Networks Group · University of Basel · Switzerland ACM ICN ’17, Berlin · September 28, 2017

  2. How to Control Read Access to a Data Packet? Name-Based Access Control and others: – Data Encryption Keys (DEK) to secure data. – Key Encryption Keys (KEK) for those who got read access. 2

  3. How to Control Read Access to a Data Packet? Name-Based Access Control and others: – Data Encryption Keys (DEK) to secure data. – Key Encryption Keys (KEK) for those who got read access. Fine for single items with one name, or for a collection, using conventions (probably one for each app namespace). But: – no support for derived data (e.g. supress time stamps but leave GPS locations) – key names usually linked to data namespace 2

  4. How to Control Read Access to a Data Packet? Name-Based Access Control and others: – Data Encryption Keys (DEK) to secure data. – Key Encryption Keys (KEK) for those who got read access. Fine for single items with one name, or for a collection, using conventions (probably one for each app namespace). But: – no support for derived data (e.g. supress time stamps but leave GPS locations) – key names usually linked to data namespace How complex does a access control system for NDN and NFN become that wants to be generic? 2

  5. The Answer . . . We did not expect this: At least four schemata! 3

  6. Zoom to the Schemata . . . Document Primary describes Type Documents Definition(s) (raw) defines mapping Data Type Schema 4

  7. Zoom to the Schemata . . . Derivation Document Primary Derived (cooking) describes Type Documents Documents Definition(s) (raw) (cooked) Data Type Schema 4

Recommend

Access Control Access Control 1 Access Control Access control : ensures that all direct

Access Control Access Control 1 Access Control Access control : ensures that all direct

Access Control Access Control 1 Access Control Access control : ensures that all direct accesses to object are authorized a scheme for mapping users to allowed actions Protection objects : system resources for which protection is

576 views • 21 slides
Access Control and Protection Overview Access control: What and Why Abstract Models of

Access Control and Protection Overview Access control: What and Why Abstract Models of

Access Control and Protection Overview Access control: What and Why Abstract Models of Access Control Discretionary acces control Mandatory access control Real systems: Unix Access Control Model Access control Access

817 views • 47 slides
Access Control Jackson Argo Rackspace MO After-hours April 28, 2016 What is Access Control?

Access Control Jackson Argo Rackspace MO After-hours April 28, 2016 What is Access Control?

Access Control Jackson Argo Rackspace MO After-hours April 28, 2016 What is Access Control? How Is Access Determined? Who Determines Access? Forms of Access Control SELinux Booleans iptables File Access Control Lists Apache Access Control

711 views • 36 slides
D2: Access Control #2: Access cess Contr trol ol Similar to OWASP Top 10 Insufficient

D2: Access Control #2: Access cess Contr trol ol Similar to OWASP Top 10 Insufficient

D2: Access Control #2: Access cess Contr trol ol Similar to OWASP Top 10 Insufficient access control and authentication checks Insecure access control methods Private, internal functions and data are accessible through a

547 views • 11 slides
Using Left-Right Trees for Hierarchic Data Storage Version: 20 September 2011 Dale Chant,

Using Left-Right Trees for Hierarchic Data Storage Version: 20 September 2011 Dale Chant,

Using Left-Right Trees for Hierarchic Data Storage Version: 20 September 2011 Dale Chant, Roland Seidel, Red Centre Software Pty Ltd SSS Conference, Bristol, 2011 Abstract Hierarchies such as grids (Brand Image) or cubes

1.11k views • 21 slides
Algorithms and Data Structures Balanced Trees (AVL-Trees, (a,b)-Trees, Red-Black-Trees)

Algorithms and Data Structures Balanced Trees (AVL-Trees, (a,b)-Trees, Red-Black-Trees)

Algorithms and Data Structures Balanced Trees (AVL-Trees, (a,b)-Trees, Red-Black-Trees) Albert-Ludwigs-Universitt Freiburg Prof. Dr. Rolf Backofen Bioinformatics Group / Department of Computer Science Algorithms and Data Structures, January

884 views • 55 slides
1 General Access Control General Access Control Control of access to memory relatively easy:

1 General Access Control General Access Control Control of access to memory relatively easy:

Role of Access Control Before closing back doors we need to close front doors Access control: determines access to files &amp; processes in OS Fall 2008 We will return to these themes throughout the course Fall 2008 CS

512 views • 6 slides
Trees 15-110 Wednesday 10/16 Learning Goals Use data structures to represent data in different

Trees 15-110 Wednesday 10/16 Learning Goals Use data structures to represent data in different

Trees 15-110 Wednesday 10/16 Learning Goals Use data structures to represent data in different formats for different purposes Map different types of data to different data structures Use trees to store and access hierarchical data

846 views • 26 slides
SYSTEM DIAGRAMS Door Entry &amp; Access Control ACCESS CONTROL ACCESS CONTROL Allowing

SYSTEM DIAGRAMS Door Entry &amp; Access Control ACCESS CONTROL ACCESS CONTROL Allowing

SYSTEM DIAGRAMS Door Entry &amp; Access Control ACCESS CONTROL ACCESS CONTROL Allowing residents / staff access to site areas Main entrance Vehicle entrances Pedestrian entrances Gate / Barrier entrance Bin / Bike / Refuge

336 views • 14 slides
Trees (Part 2) 1 / 59 Trees (Part 2) Recap Recap 2 / 59 Trees (Part 2) Recap B + Tree A B

Trees (Part 2) 1 / 59 Trees (Part 2) Recap Recap 2 / 59 Trees (Part 2) Recap B + Tree A B

Trees (Part 2) Trees (Part 2) 1 / 59 Trees (Part 2) Recap Recap 2 / 59 Trees (Part 2) Recap B + Tree A B + Tree is a self-balancing tree data structure that keeps data sorted and allows searches, sequential access, insertions, and

811 views • 59 slides
CSE 510 Web Data Engineering Access Control Authentication &amp; Authorization UB CSE 510 Web

CSE 510 Web Data Engineering Access Control Authentication &amp; Authorization UB CSE 510 Web

CSE 510 Web Data Engineering Access Control Authentication &amp; Authorization UB CSE 510 Web Data Engineering Access Control Mechanisms Declarative Authorization using Realms The expression of app security external to the app

540 views • 26 slides
Data Management Systems Access Methods Hashing Pages and Blocks Indexing B+ trees

Data Management Systems Access Methods Hashing Pages and Blocks Indexing B+ trees

Data Management Systems Access Methods Hashing Pages and Blocks Indexing B+ trees Access Methods in context Other indexing techniques Gustavo Alonso Institute of Computing Platforms Department of Computer Science ETH Zrich

695 views • 43 slides
Overview Basic Principles Access Control Methodologies Controls Access Control Designs

Overview Basic Principles Access Control Methodologies Controls Access Control Designs

Overview Basic Principles Access Control Methodologies Controls Access Control Designs Access Control Administration Accountability Chapter 2 Access Control Models Identification and Authentication Methods Lecturer:

708 views • 9 slides
Schematized Trust in NDN Van Jacobson FIA-NP Meeting Arlington, VA May 19-20, 2014

Schematized Trust in NDN Van Jacobson FIA-NP Meeting Arlington, VA May 19-20, 2014

Schematized Trust in NDN Van Jacobson FIA-NP Meeting Arlington, VA May 19-20, 2014 Today we (attempt to) secure the process of communication by adding cryptographic wrappers to the packet transport. This hasnt worked well. One

153 views • 13 slides
Outline Unix-style access control, contd CSci 5271 Multilevel and mandatory access control

Outline Unix-style access control, contd CSci 5271 Multilevel and mandatory access control

Outline Unix-style access control, contd CSci 5271 Multilevel and mandatory access control Introduction to Computer Security Access control, contd Announcements intermission Stephen McCamant Capability-based access control University

380 views • 7 slides
ECE 242 Data Structures Lecture 19 Tree Traversal October 23, 2009 ECE242 L19: Tree Traversal

ECE 242 Data Structures Lecture 19 Tree Traversal October 23, 2009 ECE242 L19: Tree Traversal

ECE 242 Data Structures Lecture 19 Tree Traversal October 23, 2009 ECE242 L19: Tree Traversal Overview Problem: How do we access the data located in trees Well-defined approaches to access data in an orderly fashion Trees can be

398 views • 9 slides
CSE 326: Data Structures B-Trees Hal Perkins Weiss Sec. 4.7 Spring 2007 Lecture 14-15 TIme to

CSE 326: Data Structures B-Trees Hal Perkins Weiss Sec. 4.7 Spring 2007 Lecture 14-15 TIme to

B-Trees CSE 326: Data Structures B-Trees Hal Perkins Weiss Sec. 4.7 Spring 2007 Lecture 14-15 TIme to access Trees so far (conservative) CPU (has registers) 1 ns per instruction BST SRAM Cache Cache 8KB - 4MB 2-10 ns Main

881 views • 8 slides
Associative Graph Data Structures AGDS with an Efficient Access via AVB+trees Adrian Horzyk AGH

Associative Graph Data Structures AGDS with an Efficient Access via AVB+trees Adrian Horzyk AGH

Associative Graph Data Structures AGDS with an Efficient Access via AVB+trees Adrian Horzyk AGH University of Science and Technology horzyk@agh.edu.pl Krakow, Poland Brains and Neurons How do they really work? How we can use brain-like

428 views • 40 slides
Paper Reviewed (1) Overview Relational Database VS Data Cubes How to derive the Hierarchical

Paper Reviewed (1) Overview Relational Database VS Data Cubes How to derive the Hierarchical

Hierarchical Structure of Data Paper Reviewed (1) Overview Relational Database VS Data Cubes How to derive the Hierarchical Structure of Data Aspects of data dimensions Chris Stolte, Diane Tang, Pat Hanrahan Hierarchical

410 views • 4 slides
Smart.Net-IP NETWORKED ACCESS CONTROL Smart.Net-IP NETWORKED ACCESS CONTROL Smart.Net-IP is a

Smart.Net-IP NETWORKED ACCESS CONTROL Smart.Net-IP NETWORKED ACCESS CONTROL Smart.Net-IP is a

Smart.Net-IP NETWORKED ACCESS CONTROL Smart.Net-IP NETWORKED ACCESS CONTROL Smart.Net-IP is a simple, modular approach to networked access control with scalability in mind. Easy management from a central location PC from anywhere with an

196 views • 9 slides
Access Control Chester Rebeiro Indian Institute of Technology Madras Access Control (the tao of

Access Control Chester Rebeiro Indian Institute of Technology Madras Access Control (the tao of

Access Control Chester Rebeiro Indian Institute of Technology Madras Access Control (the tao of achieving confiden5ality and integrity) Who can access What Objects : Subjects : Files/ Programs/ Sockets/ User/ process/ applica5on Hardware/

985 views • 46 slides
Outline Basics of access control Unix-style access control CSci 5271 Introduction to Computer

Outline Basics of access control Unix-style access control CSci 5271 Introduction to Computer

Outline Basics of access control Unix-style access control CSci 5271 Introduction to Computer Security Announcements intermission Day 10: OS security: access control Multilevel and mandatory access control Stephen McCamant University of

324 views • 10 slides
Access Control Chester Rebeiro Indian Institute of Technology Madras Access Control (the tao of

Access Control Chester Rebeiro Indian Institute of Technology Madras Access Control (the tao of

Access Control Chester Rebeiro Indian Institute of Technology Madras Access Control (the tao of achieving confidentiality and integrity) Who can access What Objects : Subjects : Files/ Programs/ Sockets/ User/ process/ application

1.31k views • 50 slides
CS 225 Data Structures Se Sep. p. 25 25 It Iterators and In Intro Trees G G Carl Evans

CS 225 Data Structures Se Sep. p. 25 25 It Iterators and In Intro Trees G G Carl Evans

CS 225 Data Structures Se Sep. p. 25 25 It Iterators and In Intro Trees G G Carl Evans It Iter erators Suppose we want to look through every element in our data structure: 8 2 5 Iterators encapsulated access to our data:

553 views • 23 slides

More recommend