Add to collection(s) Add to saved
  1. Engineering & Technology
  2. Computer Science
  3. Information Security

ARES11-RAdAC - Prof. Ravi Sandhu

advertisement 
Institute for Cyber Security
An Attribute Based Framework for
Risk-Adaptive Access Control Models
Ravi Sandhu
Executive Director and Endowed Professor
August 2011
ravi.sandhu@utsa.edu
www.profsandhu.com
www.ics.utsa.edu
Joint work with Savith Kandala and Venkata Bhamidipati
© Ravi Sandhu
World-Leading Research with Real-World Impact!
1
RAdAC Concepts
Access to resources are automatically (or
semi-automatically) granted based on:
Purpose for the access request,
Security risk, and
Situational Factors
Motivating Example: Displaying a classified
document…
© Ravi Sandhu
World-Leading Research with Real-World Impact!
2
Outline
 Benefits of Abstract Models
Core Characteristics of RAdAC
Components of RAdAC Model
Mapping RAdAC to UCON
Extending UCON Principles to RAdAC and
Modified UCON Model
© Ravi Sandhu
World-Leading Research with Real-World Impact!
3
Benefits of Abstract Models
 Proposed at the Policy Layer
Do not lay out enforcement and
implementation details
Successful practice – DAC, MAC and
RBAC
Provides a formal and structural
foundation
© Ravi Sandhu
World-Leading Research with Real-World Impact!
4
Core Characteristics of RAdAC
Reference – Robert McGraw, NIST Privilege Management Workshop, 2009
Operational Need
Security Risk
Situational Factors
Heuristics
Adaptable Access Control Policies
© Ravi Sandhu
World-Leading Research with Real-World Impact!
5
RAdAC Model

© Ravi Sandhu
World-Leading Research with Real-World Impact!
6
Operational Need / Purpose
© Ravi Sandhu
World-Leading Research with Real-World Impact!
7
Operational Need / Purpose
 Purpose (Operational Need)
The reason for the user’s access request
Can manifest as:
A user’s membership in a role
An authority is attesting to a user’s need to
access the object
Examples: Health Care – Emergency treatment
Energy – Impending power emergency
Banking – Consent to access acct info.
© Ravi Sandhu
World-Leading Research with Real-World Impact!
8
Security Risk
© Ravi Sandhu
World-Leading Research with Real-World Impact!
9
Security Risk
Users
Devices
Objects
Operations
Connections
Attribute Providers and Level of Assurance
Security risk evaluation be based on risk
associated with each of these components,
as well as a composite risk.
© Ravi Sandhu
World-Leading Research with Real-World Impact!
10
Situational Factors
© Ravi Sandhu
World-Leading Research with Real-World Impact!
11
Situational Factors
 Environmental or system oriented decision factors
 Global Situational Factors
 Example : National terrorist threat level, Enterprise under
cyber attack
 Local Situational Factors
 Example: location, current local time for accessible time
period (e.g., business hours), current location for accessible
location checking (e.g., area code, connection origination
point)
© Ravi Sandhu
World-Leading Research with Real-World Impact!
12
Access History

© Ravi Sandhu
World-Leading Research with Real-World Impact!
13
Access History
Access History
Provides two functions
updates the object access history repository with the
attributes in the access request and the access control
decision
 provides input for future access decisions
Heuristics can be used to
 Fine-tune access control policies
 Improve future access decisions
 Inputs the access decisions
© Ravi Sandhu
World-Leading Research with Real-World Impact!
14
Adaptable Access Control Policies
© Ravi Sandhu
World-Leading Research with Real-World Impact!
15
Adaptable Access Control Policies
Adaptable access control policies can
be defined based on all the
components
Overrides
Automatic
Semi-Automatic
Manual
© Ravi Sandhu
World-Leading Research with Real-World Impact!
16
UCON Model
© Ravi Sandhu
World-Leading Research with Real-World Impact!
17
Mapping RAdAC to UCON
Key missing features
Subject definition
Access History
Risk Evaluation
Extending UCON Principles to
RAdAC
© Ravi Sandhu
World-Leading Research with Real-World Impact!
18
Modified UCON Model
© Ravi Sandhu
World-Leading Research with Real-World Impact!
19
Conclusion and Future Work
 Purely focused on the abstract models
 The modified UCON model with the decomposed
subject definition and the added functions of access
history and risk evaluation is most suitable for
modeling and implementing the RAdAC concept.
 Future Work:
 Enforcement and implementation
 Defining architecture, protocols and mechanisms for the
proposed RAdAC model
© Ravi Sandhu
World-Leading Research with Real-World Impact!
20
Related documents
The Future of Cyber Security
The Future of Cyber Security
Slides - Department of Computer Science and Engineering
Slides - Department of Computer Science and Engineering
RBAC subsumes MAC and DAC
RBAC subsumes MAC and DAC
Games at twilight
Games at twilight
Mathematics SL
Mathematics SL
slides - Prof. Ravi Sandhu
slides - Prof. Ravi Sandhu
Inspired Blended Learning (iBL™)
Inspired Blended Learning (iBL™)
Defense presentation
Defense presentation
Question, Problem, and Project Based Learning
Question, Problem, and Project Based Learning
PowerPoint Presentation [English]
PowerPoint Presentation [English]
Anti-Corruption Legislations Presentation [English] (1.47
Anti-Corruption Legislations Presentation [English] (1.47
Part 4
Part 4
Nandish Dandhu
Nandish Dandhu
Week 3 Review
Week 3 Review
Sponsor: National Security Agency, 1998
Sponsor: National Security Agency, 1998
Download
advertisement