institute for cyber security towards provenance and risk
play

Institute for Cyber Security Towards Provenance and Risk-Awareness - PowerPoint PPT Presentation

Mar 25, 2024 •125 likes •256 views

Institute for Cyber Security Towards Provenance and Risk-Awareness in Social Computing Yuan Cheng, Dang Nguyen, Khalid Bijon, Ram Krishnan, Jaehong Park and Ravi Sandhu Institute for Cyber Security University of Texas at San Antonio September

  1. Institute for Cyber Security Towards Provenance and Risk-Awareness in Social Computing Yuan Cheng, Dang Nguyen, Khalid Bijon, Ram Krishnan, Jaehong Park and Ravi Sandhu Institute for Cyber Security University of Texas at San Antonio September 19, 2012 SRAS 2012, Minneapolis, MN 1 1 World-Leading Research with Real-World Impact!

  2. Access Control in Social Computing • Content is almost contributed by users • Access control policies are specified by users rather than the system alone • Policies are expressed in terms of attributes • In terms of relationships in online social networks • BUT, all of them are pre-defined static policies that always give the same outcome Unfortunately, social computing environment is • dynamically changing over time World-Leading Research with Real-World Impact!

  3. Motivating Example A user starts an event to discuss on the upcoming US election outcome. Anyone registered in the social network can join the discussion group. However, joining the group requires to vote on an election poll . In order to vote, one must demonstrate his knowledge of the candidate through an action such as to like the candidate’s fan page . Furthermore, each candidate might want users to share their page before liking. How to place control on the dependency of these actions? How to place control on the occurrence and frequency of these actions? World-Leading Research with Real-World Impact!

  4. Risk-Aware Access Control • Risk is the possibility of future loss or damage • Future needs and user behaviors are essentially unpredictable by static access control policies • Risk-aware Access Control grants or denies an access dynamically based on estimated risk instead of some predefined policies • Two key issues to assess risk: Estimate the cost of permission being misused • ( sensitivity ) • Determine the likelihood of misusing permissions ( trustworthiness ) World-Leading Research with Real-World Impact!

  5. Provenance-Aware System • Provenance of a digital data object is defined as the documentation of its origin and all the processes that influence and lead to its current state. • In a provenance-aware system, related provenance information of system transactions/events are captured, stored, and maintained. • Provenance potentially provides many enhanced benefits: usage tracking, workflow control, versioning, trustworthiness, repeatability, access control, etc.. • Can we use provenance for dynamic risk assessment? World-Leading Research with Real-World Impact!

  6. Risk Aware Access Control for SC World-Leading Research with Real-World Impact!

  7. Risk Aware Access Control for SC (cont.) • Risk value represents the level of misuse granting requester access would result in Risk threshold denotes the level of sensitivity of • performing the permission • Fluctuation of risk serves as the basis for dynamic access control • User’s risk value may increase or decrease as a result of her activities and behavior in the system. • Similarly, risk value of a resource may change depending on the past interactions on the resource. • Requester user and resource owner can specify a risk threshold associated with each permission World-Leading Research with Real-World Impact!

  8. Modeling Provenance Data in SC • Open Provenance Model (OPM) as the data model for provenance information Captures information associated with a transaction • and expresses the relations between them in causality dependencies 3 Nodes  − Artifact (ellipse) − Process (Rectangle) − Agent (Octagon) 5 Causality  dependency edges (not dataflow)

  9. OPM Scenario World-Leading Research with Real-World Impact!

  10. Modeling Provenance Data in SC (cont.) • Alice requests to join an event: • request(Alice, join, accountOf(Alice), event) Associated transaction: • • (Alice, join, accountOf(Alice), event, eventWithAcountOfAliceAdded) • The corresponding provenance information: • (join, wasControlledBy, Alice) (join, used, event) • • (join, used, accountOf(Alice)) • (eventWithAccountOfAliceAdded, wasGeneratedBy, join) World-Leading Research with Real-World Impact!

  11. CONCLUSION • Identify the necessity of incorporating Risk awareness and Provenance awareness in SC. Demonstrate through an example scenario. • • Present an approach for Provenance-based Risk Assessment. • Present the initial effort towards a conceptual model for Risk-based Access Control. World-Leading Research with Real-World Impact!

  12.  Questions or comments? Thank You  World-Leading Research with Real-World Impact!

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework Reporting Objectives Executive Summary Information Assess Current Cyber Security Posture Measure Progress Toward Improvement Assess

634 views • 5 slides
Provenance-based Access Control Models July 31, 2014 Dissertation Defense Dang Nguyen Institute

Provenance-based Access Control Models July 31, 2014 Dissertation Defense Dang Nguyen Institute

Institute for Cyber Security Provenance-based Access Control Models July 31, 2014 Dissertation Defense Dang Nguyen Institute for Cyber Security University of Texas at San Antonio World-leading research with real-world impact! 1 Presentation

451 views • 44 slides
Institute for Cyber Security A Framework for Risk-Aware Role Based Access Control Khalid Zaman

Institute for Cyber Security A Framework for Risk-Aware Role Based Access Control Khalid Zaman

Institute for Cyber Security A Framework for Risk-Aware Role Based Access Control Khalid Zaman Bijon, Ram Krishnan and Ravi Sandhu Institute for Cyber Security University of Texas at San Antonio October 16, 2013 SafeConfig 2013: IEEE 6th

227 views • 18 slides
CYBER SECURITY Nick Kervin Partner, IT Advisory August 2017 Page 1 CYBER SECURITY Overview

CYBER SECURITY Nick Kervin Partner, IT Advisory August 2017 Page 1 CYBER SECURITY Overview

CYBER SECURITY Nick Kervin Partner, IT Advisory August 2017 Page 1 CYBER SECURITY Overview 1. What is at risk? 2. Global industry trends 3. BDO/AusCERT survey 4. Recent cyber case studies 5. Cyber risk mitigation strategies Page

481 views • 35 slides
Submarine Design Test & Evaluation: Challenging Cyber-Provenance & Cyber Sidecars

Submarine Design Test & Evaluation: Challenging Cyber-Provenance & Cyber Sidecars

Submarine Design Test & Evaluation: Challenging Cyber-Provenance & Cyber Sidecars Capability Systems Centre, School of Engineering and Information Technology Dr Keith Joiner, CSC Group Captain (Retd) Pictures courtesy Australian

339 views • 8 slides
Advanced Cyber Risk Management Threat Modeling & Cyber Wargaming April 23, 2018 The

Advanced Cyber Risk Management Threat Modeling & Cyber Wargaming April 23, 2018 The

Advanced Cyber Risk Management Threat Modeling & Cyber Wargaming April 23, 2018 The Homeland Security Systems Engineering and Development Institute (HSSEDI) is a trademark of the U.S. Department of Homeland Security (DHS). The HSSEDI

149 views • 13 slides
Institute for Cyber Security A Formal Model for Isolation Management in Cloud

Institute for Cyber Security A Formal Model for Isolation Management in Cloud

Institute for Cyber Security A Formal Model for Isolation Management in Cloud Infrastructure-as-a-Service Khalid Zaman Bijon, Ram Krishnan and Ravi Sandhu Institute for Cyber Security University of Texas at San Antonio October 15-17, 2014 NSS

146 views • 13 slides
Institute for Cyber Security A Lattice Interpretation of Group-Centric Collaboration with

Institute for Cyber Security A Lattice Interpretation of Group-Centric Collaboration with

Institute for Cyber Security A Lattice Interpretation of Group-Centric Collaboration with Expedient Insiders Khalid Zaman Bijon, Tahmina Ahmed, Ravi Sandhu, Ram Krishnan Institute for Cyber Security University of Texas at San Antonio 1 1

336 views • 16 slides
Experimental Challenges in Cyber Security: A Story of

Experimental Challenges in Cyber Security: A Story of

8/15/11 Experimental Challenges in Cyber Security: A Story of Provenance and Lineage for Malware Tudor Dumitra

269 views • 10 slides
Demystifying Cyber Insurance European Legal Security Forum 2016 12 th July 2016 Agenda The

Demystifying Cyber Insurance European Legal Security Forum 2016 12 th July 2016 Agenda The

Demystifying Cyber Insurance European Legal Security Forum 2016 12 th July 2016 Agenda The Evolution of Cyber Insurance Is Cyber Risk Already Insured? Cyber And Data Protection Is Not Just An IT Issue Case Study Cyber Risk Stakeholders The

1.03k views • 8 slides
Data Driven Assessment of Cyber Risk: Challenges in Assessing and Mitigating Cyber Risk

Data Driven Assessment of Cyber Risk: Challenges in Assessing and Mitigating Cyber Risk

Data Driven Assessment of Cyber Risk: Challenges in Assessing and Mitigating Cyber Risk Challenges in Assessing and Mitigating Cyber Risk Mustaque Ahamad, Saby Mitra and Paul Royal Georgia Tech Information Security Center Georgia Tech

763 views • 16 slides
Institute for Cyber Security Towards An Attribute Based Constraints Specification Language

Institute for Cyber Security Towards An Attribute Based Constraints Specification Language

Institute for Cyber Security Towards An Attribute Based Constraints Specification Language Khalid Zaman Bijon, Ram Krishnan and Ravi Sandhu Institute for Cyber Security University of Texas at San Antonio September 11, 2013 2013 ASE/IEEE

425 views • 17 slides
Institute for Cyber Security The University of Texas at San Antonio World-Leading Research with

Institute for Cyber Security The University of Texas at San Antonio World-Leading Research with

Institute for Cyber Security The University of Texas at San Antonio World-Leading Research with Real-World Impact! April 20, 2010 To: Julian Thrash From: Jeff Reich, Director of Operations for the Institute for Cyber Security Subject:

176 views • 3 slides
Towards Semantics for Provenance Security Stephen Chong Harvard University TaPP 09

Towards Semantics for Provenance Security Stephen Chong Harvard University TaPP 09

Towards Semantics for Provenance Security Stephen Chong Harvard University TaPP 09 Provenance security Some data are sensitive Must ensure provenance does not reveal sensitive data E.g., John participated in medical study S reveals

277 views • 27 slides
Cyber Security in Mining Automation Ragnar Schierholz, Head of Cyber Security, Industrial

Cyber Security in Mining Automation Ragnar Schierholz, Head of Cyber Security, Industrial

ABB MINING USER CONFERENCE, MAY 02-05, 2017 Cyber Security in Mining Automation Ragnar Schierholz, Head of Cyber Security, Industrial Automation Division Agenda Why worry about cyber security? ABBs approach to cyber security Cyber security

1.07k views • 39 slides
Proof-of-Stake Consensus Protocol for Cyber Supply Chain Data Provenance Xueping Liang, Deepak

Proof-of-Stake Consensus Protocol for Cyber Supply Chain Data Provenance Xueping Liang, Deepak

Proof-of-Stake Consensus Protocol for Cyber Supply Chain Data Provenance Xueping Liang, Deepak Tosh, Sachin She)y Old Dominion University Funded by the U.S. Department of Energy and the U.S. Department of Homeland Security | cred-c.org

1.2k views • 28 slides
How Can Theoretical Computer Science Inform Social Computing? Siddharth Suri Microsoft Research

How Can Theoretical Computer Science Inform Social Computing? Siddharth Suri Microsoft Research

How Can Theoretical Computer Science Inform Social Computing? Siddharth Suri Microsoft Research NYC Why Should TCS Impact Social Computing? 2 Social Computing: Any computational system with a human in the loop Computer science enabled

1.47k views • 8 slides
Social Computing CSC 495 and CSC 555 Munindar P. Singh, Professor singh@ncsu.edu Department of

Social Computing CSC 495 and CSC 555 Munindar P. Singh, Professor singh@ncsu.edu Department of

Social Computing CSC 495 and CSC 555 Munindar P. Singh, Professor singh@ncsu.edu Department of Computer Science North Carolina State University Fall 2016 Munindar P. Singh (NCSU) Social Computing Fall 2016 1 Mechanics Scope

453 views • 9 slides
Ea East Portlan land R Resili liency cy C Coal alit ition ( (EP EPRC) Opportunity to

Ea East Portlan land R Resili liency cy C Coal alit ition ( (EP EPRC) Opportunity to

Ea East Portlan land R Resili liency cy C Coal alit ition ( (EP EPRC) Opportunity to expand on existing neighborhood collaboration Build connections between groups working in East Portland Create new, innovative projects at

334 views • 6 slides
Enterprises in Cumbria webinar The webinar will start shortly Social Enterprises in Cumbria An

Enterprises in Cumbria webinar The webinar will start shortly Social Enterprises in Cumbria An

Welcome to the Social Enterprises in Cumbria webinar The webinar will start shortly Social Enterprises in Cumbria An introductory webinar Daniel Heery Vice Chair Cumbria Social Enterprise Partnership Programme Overview of webinar and

305 views • 17 slides
Social Computing with 2COMM4JASON Matteo Baldoni 1 joint work with C. Baroglio, F. Capuzzimati,

Social Computing with 2COMM4JASON Matteo Baldoni 1 joint work with C. Baroglio, F. Capuzzimati,

Social Computing with 2COMM4JASON Matteo Baldoni 1 joint work with C. Baroglio, F. Capuzzimati, and R. Micalizio 1 Dipartimento di Informatica, Universit` a degli Studi di Torino http://www.di.unito.it/~baldoni Dagstuhl, March 23-27, 2015 BBC

340 views • 22 slides
CS5412 / LECTURE 19 Ken Birman BIG (I O T) DATA Spring, 2019

CS5412 / LECTURE 19 Ken Birman BIG (I O T) DATA Spring, 2019

CS5412 / LECTURE 19 Ken Birman BIG (I O T) DATA Spring, 2019 HTTP://WWW.CS.CORNELL.EDU/COURSES/CS5412/2018SP 1 TODAYS TOPIC: A BROAD OVERVIEW In CS5412 we dont actually do big data, but we are interested in the infrastructure that

749 views • 47 slides
Social Media and the Church God is always good news; we are the ones who make ourselves

Social Media and the Church God is always good news; we are the ones who make ourselves

Social Media and the Church God is always good news; we are the ones who make ourselves irrelevant when we are not good news. And when we are good news, God's people see growing churches. - Archbishop Justin Welby The crucial, free tools

432 views • 29 slides
Overview Produc-on CONFIDENTIAL DO NOT DISTRIBUTE WITHOUT

Overview Produc-on CONFIDENTIAL DO NOT DISTRIBUTE WITHOUT

Overview Produc-on CONFIDENTIAL DO NOT DISTRIBUTE WITHOUT PRIOR CONSENT Produc-on Dashboard www.florja.com

566 views • 20 slides

More recommend