a framework for managing and analyzing changes of
play

A Framework for Managing and Analyzing Changes of Security Policies - PowerPoint PPT Presentation

Oct 03, 2023 •488 likes •662 views

A Framework for Managing and Analyzing Changes of Security Policies Achim D. Brucker Helmut Petritsch { achim.brucker, helmut.petritsch } @sap.com SAP Research Karlsruhe Germany IEEE International Symposium on Policies for Distributed Systems

  1. A Framework for Managing and Analyzing Changes of Security Policies Achim D. Brucker Helmut Petritsch { achim.brucker, helmut.petritsch } @sap.com SAP Research Karlsruhe Germany IEEE International Symposium on Policies for Distributed Systems and Networks POLICY 2011 Pisa, Italy, 7th June 2011 –sourcefile– –revision– 2011-06-07 –time– –owner– A.D. Brucker and H. Petritsch Managing and Analyzing Changes of Security Policies

  2. Motivation Lots of regulations, e. g., ◮ Financial market, Basel II (EU), sox (US), pci (credit cards) ◮ Health care, e. g., hipaa in the US Hard to enforce legal regulations ◮ Problem: translation from legal documents to policies Audits needed to assess compliance ◮ Vast amount of log information ◮ Increasing costs for audits General idea: ◮ Support for writing policies ◮ Support for auditing log traces –sourcefile– –revision– 2011-06-07 –time– –owner– A.D. Brucker and H. Petritsch Managing and Analyzing Changes of Security Policies

  3. R Policy Application Context PEP Components Business Layer PEP Components Application Layer Components User Interface PEP R R Point Information R Policy Storage Logfile Storage R Standard Architecture (Distributed Systems) ◮ Multiple pep s accessing a central pdp ◮ Policy Information Point ( pip ) resolves information from the application context ◮ Policies are loaded from a Policy Storage ◮ Access control requests and results are stored in a Logfile Storage –sourcefile– –revision– 2011-06-07 –time– –owner– A.D. Brucker and H. Petritsch Managing and Analyzing Changes of Security Policies

  4. R User Interface Policy Information Point R R PEP Components R Application Layer Components PEP Business Layer Components PEP Application Context R Policy Storage Logfile Storage Versioning Versioning Versioning Based on xacml ◮ Store policies in a Versioning Policy Storage (e. g., svn for xacml policies) ◮ Save all pip -resolved data in a Versioning Logfile Storage ◮ xacml : resolved attributes ◮ Save the current “state” of the system as seen by the pdp ◮ Interface for clients and pip remains the same –sourcefile– –revision– 2011-06-07 –time– –owner– A.D. Brucker and H. Petritsch Managing and Analyzing Changes of Security Policies

  5. R R Components Application Layer Components PEP Business Layer Components PEP Application Context Policy PEP Lifecycle Management Security Policy Analysis and Management Workbench R Administrator/Management User Interface R User Interface R Point Information Policy R R Policy Storage Versioning Logfile Storage Versioning R Administration Administration and Management Interface ◮ Policy Administration Point ( pap ) ◮ Adopt or provide a wrapper with versioning support for standard tools, e. g., xacml editor –sourcefile– –revision– 2011-06-07 –time– –owner– A.D. Brucker and H. Petritsch Managing and Analyzing Changes of Security Policies

  6. and Management Workbench Analysis R R R R User Interface Administrator/Management User Interface Analysis/Audit R R R R Security Policy Analysis Tool Policy Logfile Storage Versioning Analysis Management Lifecycle Policy Policy Storage Versioning PIP Analysis Workbench ◮ Analysis pdp s load any policy version from the policy store ◮ Analysis Policy Information Point ( pip ) as context provider ◮ Analysis pip retrieves attributes from log store ◮ Simulated runtime environment for analysis ◮ Replay (re-evaluate) recorded (or new) access control requests ◮ Analysis pdp enhancements allow for advanced analysis methods, e. g., ◮ Debugging of Policies ◮ Abstract evaluation –sourcefile– –revision– 2011-06-07 –time– –owner– A.D. Brucker and H. Petritsch Managing and Analyzing Changes of Security Policies

  7. Replay Access Control Requests To replay an access control request ◮ Select log entry from the log store ◮ Instantiate an Analysis pdp with a policy version ◮ Replay request on Analysis pdp ◮ Analysis pdp retrieves attributes as recorded for this request via Analysis pip from the log store Support for understanding policies changes, e. g., ◮ Replaying incidents or suspicious requests with different policy versions ◮ Does a change in the policy lead to a different result? –sourcefile– –revision– 2011-06-07 –time– –owner– A.D. Brucker and H. Petritsch Managing and Analyzing Changes of Security Policies

  8. Analysis pdp Enhancements Enhancement of the Analysis pdp with analysis features ◮ Generation of “evaluation events” for every xacml element ◮ Injection of runtime information into xacml objects ◮ Allows to, e. g., access the call stack (Java objects representing xacml elements) at runtime Allows to ◮ Debug policies ◮ Provide runtime information about evaluation state to users and analysis tools –sourcefile– –revision– 2011-06-07 –time– –owner– A.D. Brucker and H. Petritsch Managing and Analyzing Changes of Security Policies

  9. Abstract Evaluation ◮ Evaluate policies with abstract attribute values instead of concrete values ◮ Results relying on abstract values have to be treated as abstract itself ◮ Reimplement (parts of) functions and combining algorithms: no lazy-evaluation based on abstract results ◮ Evaluate those parts of the policy which could be reached with any arbitrary configuration of the attribute –sourcefile– –revision– 2011-06-07 –time– –owner– A.D. Brucker and H. Petritsch Managing and Analyzing Changes of Security Policies

  10. Abstract Evaluation Allows to obtain those parts of a policy, which are relevant for a specific request ◮ Use efficient evaluation to cut off non relevant parts ◮ Obtain “sub policy” which is relevant for specific request (and analysis question thereon) ◮ Complex analysis has only to deal with remaining sub policy –sourcefile– –revision– 2011-06-07 –time– –owner– A.D. Brucker and H. Petritsch Managing and Analyzing Changes of Security Policies

  11. R R R R R R R Analysis/Audit User Interface Administrator/Management User Interface R External Analysis Tools Security Policy Analysis Theorem Prover SAT Solver SMT Solver Model Checker R R and Management Workbench Adaptor Layer Versioning Analysis Policy PIP Analysis Management Lifecycle Policy Policy Storage Logfile Storage Versioning Tool External Analysis Tools ◮ Integrate existing and new developed tools ◮ Provide interfaces to access policy and log store ◮ Load and use Analysis pdp s ◮ Define or modify the simulated runtime environment ◮ Retrieve evaluation events from the Analysis pdp ◮ Browse the evaluation state –sourcefile– –revision– 2011-06-07 –time– –owner– A.D. Brucker and H. Petritsch Managing and Analyzing Changes of Security Policies

  12. Policy Animation During replay, attributes may be missing ◮ Policy version at runtime did not require attribute (and the attribute was therefore not recorded) ◮ Intentionally removed from the request ◮ Manually defined request, e. g., for testing Resolution strategies: ◮ Ask user for value ◮ Policy Animation: computation of equivalence classes –sourcefile– –revision– 2011-06-07 –time– –owner– A.D. Brucker and H. Petritsch Managing and Analyzing Changes of Security Policies

  13. Policy Animation What are suitable values for the attribute current ◮ For a nurse, when patient and subject department are known? <! -- PolicySet: match HealthRecord -- > <PolicySet PolicyComb="first -applicable"> <Target ><Resource >HealthRecord </Resource ></Target > <! -- Policy: rules for nurses -- > <Policy RuleCombAlg="first -applicable"> <Target ><Role >Nurse </Role ></Target > <! -- Deny in non -working -hours (i.e., at night) -- > <Rule Id="1" Effect="Deny"><Target/> <Condition > 20:00 <= current <= 06:00 <Condition > </Rule > <! -- permit read , if patient is on the same department -- > <Rule Id="2" Effect="Permit"> <Target ><Action >read </Action ></Target > <Condition > pat -dep == subj -dep </ Condition > </Rule ></Policy > <! -- Policy: rules for doctors: Permit during working hours -- > <Policy RuleCombAlg="first -applicable"> <Target ><Role >Doctor </Role ></Target > <Rule Id="3" Effect="Permit"><Target/> <Condition > 05:30 <= current <= 19:00 <Condition > </Rule ></Policy > <! -- final policy for HealthRecords -- > <Policy ><Target/> <Rule Id="final" Effect="Deny"/> </Policy ></PolicySet > –sourcefile– –revision– 2011-06-07 –time– –owner– A.D. Brucker and H. Petritsch Managing and Analyzing Changes of Security Policies

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Using A Cost-Based Framework For Analyzing Denial Of Service Presented By: Joan Paul A

Using A Cost-Based Framework For Analyzing Denial Of Service Presented By: Joan Paul A

Using A Cost-Based Framework For Analyzing Denial Of Service Presented By: Joan Paul A Cost-Based Framework for Analysis of Denial of Service in Networks Catherine Meadows (2001) Analyzing DoS-Resistance of Protocols Using a

287 views • 28 slides
Elinor Ostrom: A General Framework for Analyzing Sustainability

Elinor Ostrom: A General Framework for Analyzing Sustainability

Elinor Ostrom: A General Framework for Analyzing Sustainability of Socio-Ecological Systems. Science 325:419-422. (2009) . Danielle V. Dolan April 17, 2014 ESP 212B

342 views • 19 slides
On a New Approach for Analyzing and Managing Macrofinancial Risks Robert C. Merton, PhD, School

On a New Approach for Analyzing and Managing Macrofinancial Risks Robert C. Merton, PhD, School

On a New Approach for Analyzing and Managing Macrofinancial Risks Robert C. Merton, PhD, School of Management Distinguished Professor of Finance, Massachusetts Institute of Technology, and Resident Scientist, Dimensional Holdings, Inc.

568 views • 22 slides
A Framework for Analyzing Verifiability in Traditional and Electronic Exams Jannik Dreier 1 ,

A Framework for Analyzing Verifiability in Traditional and Electronic Exams Jannik Dreier 1 ,

A Framework for Analyzing Verifiability in Traditional and Electronic Exams Jannik Dreier 1 , Rosario Giustolisi 2 , Ali Kassem 3 , Pascal Lafourcade 4 and Gabriele Lenzini 2 1 Institute of Information Security, ETH Zurich 2 SnT/University of

676 views • 30 slides
Towards a Logic-Based Framework for Analyzing Stream Reasoning Harald Beck Minh Dao-Tran Thomas

Towards a Logic-Based Framework for Analyzing Stream Reasoning Harald Beck Minh Dao-Tran Thomas

Towards a Logic-Based Framework for Analyzing Stream Reasoning Harald Beck Minh Dao-Tran Thomas Eiter Michael Fink 3rd International Workshop on Ordering and Reasoning October 20, 2014 Motivation Streams Logical Framework Conclusions

547 views • 52 slides
Spatial Statistics A Framework for Analyzing Geographically Referenced Data in Insurance

Spatial Statistics A Framework for Analyzing Geographically Referenced Data in Insurance

Spatial Statistics A Framework for Analyzing Geographically Referenced Data in Insurance Ratemaking Satadru Sengupta Personal Market Liberty Mutual Group CAS Ratemaking &amp; Product Management Seminar Chicago March 2010 Antitrust Notice

526 views • 26 slides
Analyzing Effects of RCEP on Foreign Direct Investment in a Firm Heterogeneity CGE Framework

Analyzing Effects of RCEP on Foreign Direct Investment in a Firm Heterogeneity CGE Framework

Analyzing Effects of RCEP on Foreign Direct Investment in a Firm Heterogeneity CGE Framework Qiaomin Li Supervisor: Robert Scollay Department of Economics University of Auckland New Zealand August 2014 1 1. Introduction Two of my previous

762 views • 59 slides
Categorizing, Analyzing, &amp; Managing Third Party Trust Andy Sayler TPRC44 10/01/16 The

Categorizing, Analyzing, &amp; Managing Third Party Trust Andy Sayler TPRC44 10/01/16 The

Categorizing, Analyzing, &amp; Managing Third Party Trust Andy Sayler TPRC44 10/01/16 The Internet By Randall Munroe, xkcd.com Third Party Services Questions What capabilities are we entrusting to third parties? What capabilities are we

1.15k views • 95 slides
A statistical modeling framework for analyzing tree-indexed data Application to plant development

A statistical modeling framework for analyzing tree-indexed data Application to plant development

A statistical modeling framework for analyzing tree-indexed data Application to plant development at microscopic and macroscopic scales Pierre Fernique 1 , 2 edon 2 &amp; Jean-Baptiste Durand 3 S upervised by Yann Gu 1 Universit e Montpellier

1.03k views • 89 slides
Framework for Analyzing Modular, Adaptable and Flexible Surface Combatants Dr. Norbert Doerry

Framework for Analyzing Modular, Adaptable and Flexible Surface Combatants Dr. Norbert Doerry

Framework for Analyzing Modular, Adaptable and Flexible Surface Combatants Dr. Norbert Doerry Dr. Philip Koenig SNAME Maritime Convention October 25-27, 2017 Houston, Texas Approved for Public Release 9/1/2017 1 Distribution is Unlimited

186 views • 18 slides
A Framework for Analyzing the Effects of Interruptions of Online Assessment Joseph Martineau

A Framework for Analyzing the Effects of Interruptions of Online Assessment Joseph Martineau

A Framework for Analyzing the Effects of Interruptions of Online Assessment Joseph Martineau Senior Associate June 22, 2016 1 Based on a Paper Prepared for CCSSO Available on the web from: CCSSO The Center for Assessment Martineau,

281 views • 24 slides
ANALYZING JAVA WITH THE SAWJA FRAMEWORK F ROM RESEARCH SPECIFICATIONS TO REALISTIC TOOLS Laurent

ANALYZING JAVA WITH THE SAWJA FRAMEWORK F ROM RESEARCH SPECIFICATIONS TO REALISTIC TOOLS Laurent

ANALYZING JAVA WITH THE SAWJA FRAMEWORK F ROM RESEARCH SPECIFICATIONS TO REALISTIC TOOLS Laurent Hubert and David Pichardie INRIA Rennes, France FMCO 2010 COST Action IC0701 Session 30 November 2010 Tuesday, November 30, 2010 1 Static

585 views • 54 slides
Howdah a flexible pipeline framework and applications to analyzing genomic data Steven Lewis PhD

Howdah a flexible pipeline framework and applications to analyzing genomic data Steven Lewis PhD

Howdah a flexible pipeline framework and applications to analyzing genomic data Steven Lewis PhD slewis@systemsbiology.org What is a Howdah? A howdah is a carrier for an elephant The idea is that multiple tasks can be performed

531 views • 27 slides
Developing a new framework for managing absence Dr Richard Preece, Consultant in occupational

Developing a new framework for managing absence Dr Richard Preece, Consultant in occupational

Developing a new framework for managing absence Dr Richard Preece, Consultant in occupational medicine Melissa Holley, Head of Human Resources Management Mid Cheshire Hospitals NHS FT A celebration of those light bulb moments that are

524 views • 30 slides
ESCAPE: An Adaptive Framework for Managing and Providing Context Information in Emergency

ESCAPE: An Adaptive Framework for Managing and Providing Context Information in Emergency

ESCAPE: An Adaptive Framework for Managing and Providing Context Information in Emergency Situations Hong-Linh Truong, Lukasz Juszczyk, Atif Manzoor, Schahram Dustdar Distributed Systems Group, Vienna University of Technology

585 views • 21 slides
Managing currency composition under an ALM framework WB Sovereign Debt Management Forum

Managing currency composition under an ALM framework WB Sovereign Debt Management Forum

Managing currency composition under an ALM framework WB Sovereign Debt Management Forum Washington DC December 4, 2014 Ms. Fatos Koc Head of Market Risk Management Department Turkish Treasury Outline Notes from the country experiences o

155 views • 15 slides
Private Equity Fellows Program 2015-16 Information Session: Prospective Applicants April 15, 2015

Private Equity Fellows Program 2015-16 Information Session: Prospective Applicants April 15, 2015

Columbia Business School Private Equity Fellows Program 2015-16 Information Session: Prospective Applicants April 15, 2015 Margaret Cannella, Adjunct Professor and Administrative Director, Private Equity Program Greta Larson, Associate

303 views • 17 slides
Solar Neutrinos with Borexino Low Background Lessons for the JinPing Laboratory Frank Calaprice

Solar Neutrinos with Borexino Low Background Lessons for the JinPing Laboratory Frank Calaprice

Solar Neutrinos with Borexino Low Background Lessons for the JinPing Laboratory Frank Calaprice and Jingke Xu Department of Physics Princeton University 4/10/2014 1 Solar Neutrinos at Jin Ping Solar Neutrinos with Borexino First

485 views • 33 slides
XACML and Role-Based Access Control Jason Crampton Royal Holloway, University of London DIMACS

XACML and Role-Based Access Control Jason Crampton Royal Holloway, University of London DIMACS

XACML and Role-Based Access Control Jason Crampton Royal Holloway, University of London DIMACS Workshop on Secure Web Services and e-Commerce XACML and RBAC/Introduction Jason Crampton Programme Examine the XACML standard and the XACML RBAC

499 views • 32 slides
Cooperative Secondary Authorization Recycling Qiang Wei, Matei Ripeanu, Konstantin Beznosov

Cooperative Secondary Authorization Recycling Qiang Wei, Matei Ripeanu, Konstantin Beznosov

Cooperative Secondary Authorization Recycling Qiang Wei, Matei Ripeanu, Konstantin Beznosov Laboratory for Education and Research in Secure Systems Engineering (lersse.ece.ubc.ca) University of British Columbia Typical Authorization

256 views • 23 slides
Pythonic Coding Style A Foolish Consistency is the Hobgoblin of Little Minds Guido van Rossum

Pythonic Coding Style A Foolish Consistency is the Hobgoblin of Little Minds Guido van Rossum

Pythonic Coding Style A Foolish Consistency is the Hobgoblin of Little Minds Guido van Rossum (creator of Python) makes a point: code is read more often than it is written , so readability counts . Python is one of the few languages with an

555 views • 20 slides
HUBZone Program First Wednesday Virtual Learning Series 2018 www.sba.gov 1 Hosts Christopher

HUBZone Program First Wednesday Virtual Learning Series 2018 www.sba.gov 1 Hosts Christopher

HUBZone Program First Wednesday Virtual Learning Series 2018 www.sba.gov 1 Hosts Christopher Eischen, Procurement Center Representative SBA Office of Government Contracting, Area IV, Kansas City, MO christopher.eischen@sba.gov (816) 426-4911

602 views • 58 slides
Hard Links Hard Links Rule Engine Plugin Rule Engine Plugin Kory Draughn June 9-12, 2020

Hard Links Hard Links Rule Engine Plugin Rule Engine Plugin Kory Draughn June 9-12, 2020

Hard Links Hard Links Rule Engine Plugin Rule Engine Plugin Kory Draughn June 9-12, 2020 Software Developer iRODS User Group Meeting 2020 iRODS Consortium Virtual Event 1 Hard Links - Why?

419 views • 13 slides
How we built a decentralized blogging engine with XMPP J er ome Poisson (Goffi) FOSDEM

How we built a decentralized blogging engine with XMPP J er ome Poisson (Goffi) FOSDEM

How we built a decentralized blogging engine with XMPP J er ome Poisson (Goffi) FOSDEM Saturday 30th January 2016 Plan XMPP PubSub PEP Microblogging solutions! Conclusion XMPP XMPP standard (RFCs 6120, 6121, 6122)

807 views • 42 slides

More recommend