inter domain role mapping and least privilege
play

Inter-domain Role Mapping and Least Privilege Liang Chen Jason - PowerPoint PPT Presentation

Jan 21, 2023 •266 likes •458 views

Inter-domain Role Mapping and Least Privilege Liang Chen Jason Crampton Information Security Group, Royal Holloway, University of London 12th ACM Symposium on Access Control Models and Technologies IDRM and Least Privilege Introduction

  1. Inter-domain Role Mapping and Least Privilege Liang Chen Jason Crampton Information Security Group, Royal Holloway, University of London 12th ACM Symposium on Access Control Models and Technologies

  2. IDRM and Least Privilege · Introduction RBAC96 • The RBAC96 family of models define a number of basic components – A set of users U – A partially ordered set of roles RH ⊆ R × R – A set of permissions P – A user-role assignment relation UA ⊆ U × R – A set of sessions S – A permission-role assignment relation PA ⊆ P × R 12th ACM Symposium on Access Control Models and Technologies Liang Chen · Jason Crampton

  3. IDRM and Least Privilege · Introduction Inter-domain role mapping (IDRM) problem • Given a set of requested permissions Q ⊆ P , find the minimal set of roles R ′ ⊆ R such that Auth ( R ′ ) = Q (Du and Joshi, SACMAT, 2006) • The IDRM problem is not well defined for at least two reasons – There may be several sets R 1 , . . . , R k such that Auth ( R i ) = Q, i = 1 , . . . , k – There may not exist R ′ ⊆ R such that Auth ( R ′ ) = Q 12th ACM Symposium on Access Control Models and Technologies Liang Chen · Jason Crampton

  4. IDRM and Least Privilege · Introduction r 1 Motivating example t ✁ ❆ ✁ ❆ • Given Q = { p 2 , p 3 , p 4 , p 5 } , then ✁ ❆ { r 2 , r 4 } and { r 3 , r 4 } are both mini- ✁ ❆ ✁ ❆ mal solutions ✁ ❆ ✁ ❆ • Given Q = { p 2 , p 3 , p 4 } , what is the t r 2 t r 3 t r 4 appropriate solution for the IDRM problem? t t t t t p 1 p 2 p 3 p 4 p 5 – Auth ( { r 3 } ) = { p 2 , p 3 } – Auth ( { r 3 , r 4 } ) = { p 2 , p 3 , p 4 , p 5 } 12th ACM Symposium on Access Control Models and Technologies Liang Chen · Jason Crampton

  5. IDRM and Least Privilege · Introduction Our motivation We want to formulate the IDRM problem more accurately in terms of availability and safety • Availability and least privilege – Auth ( R ′ ) ⊇ Q – | Auth ( R ′ ) | is minimized – | R ′ | is minimized • Safety – Auth ( R ′ ) ⊆ Q – | Auth ( R ′ ) | is maximized – | R ′ | is minimized 12th ACM Symposium on Access Control Models and Technologies Liang Chen · Jason Crampton

  6. IDRM and Least Privilege · Introduction Outline • Weighted set cover problem and greedy algorithm • An availability approach to IDRM • A safety approach to IDRM • Conclusion and future work 12th ACM Symposium on Access Control Models and Technologies Liang Chen · Jason Crampton

  7. IDRM and Least Privilege · Weighted set cover problem Set cover optimization problem • Given a universe U and a collection C of subsets of U whose union is U , find a subset D ⊆ C such that � U = D and | D | is minimized D ∈D • Let U = { 1 , 2 , 3 , 4 , 5 , 6 } , and C = {{ 1 , 2 } , { 1 , 3 } , { 1 , 4 } , { 1 , 5 } , { 1 , 6 } , { 1 , 2 , 3 } , { 3 , 4 , 5 }} – Then {{ 1 , 2 , 3 } , { 3 , 4 , 5 } , { 1 , 6 }} is a solution of the set cover optimization problem 12th ACM Symposium on Access Control Models and Technologies Liang Chen · Jason Crampton

  8. IDRM and Least Privilege · Weighted set cover problem Weighted set cover problem • Given a universe U , a collection C of subsets of U whose union is U , and a weight function w : C → R + , find a subset D ⊆ C such that � � U = D and w ( D ) is minimized D ∈D D ∈D • The set covering optimization problem is an instance of the weighted set cover problem in which w ( C ) = 1 for all C ∈ C 12th ACM Symposium on Access Control Models and Technologies Liang Chen · Jason Crampton

  9. IDRM and Least Privilege · Weighted set cover problem Greedy algorithm • The weighted set cover problem is NP-hard • There exists a greedy algorithm that provides good approximate solutions – Let A i − 1 ⊆ U denotes the set of elements that remain uncovered at the ( i − 1)th iteration ( A 0 = U ) w ( C i ) – At the i th iteration, C i ∈ C is selected such that | C i ∩ A i − 1 | is minimized 12th ACM Symposium on Access Control Models and Technologies Liang Chen · Jason Crampton

  10. IDRM and Least Privilege · An availability approach to IDRM Basic idea • Recall that we want to ensure that Auth ( R ′ ) ⊇ Q , and | Auth ( R ′ ) | and | R ′ | are minimized • We compute R Q = { r ∈ R : Auth ( r ) ∩ Q � = ∅} • We map the IDRM problem to the weighted set cover problem – Q is contained in the union of Auth ( r ), r ∈ R Q – We select a subset of R Q minimizing the choices from r ∈ R Q where Auth ( r ) contains a permission that is not in Q 12th ACM Symposium on Access Control Models and Technologies Liang Chen · Jason Crampton

  11. IDRM and Least Privilege · An availability approach to IDRM The weight function • We define the weight function w : R Q → R + , where w ( r ) = | Auth ( r ) | · | Auth ( r ) \ Q | + 1 | Q | – If Auth ( r ) ⊆ Q , then | Auth ( r ) \ Q = ∅| and w ( r ) = 1 / | Q | – In contrast, roles that “step outside” Q have a much greater weight 12th ACM Symposium on Access Control Models and Technologies Liang Chen · Jason Crampton

  12. IDRM and Least Privilege · An availability approach to IDRM The algorithm • Given a set of permissions Q , a collection of subsets { Auth ( r ) : r ∈ R Q } , and a weight function w : R Q → R + , find R ′ Q ⊆ R Q such that � � Auth ( r ) ⊇ Q and w ( r ) is minimized r ∈ R ′ r ∈ R ′ Q Q • We modify the greedy algorithm to compute an approximate solution for the IDRM problem – Let A i − 1 ⊆ Q denote the set of elements remain uncovered – At the i th iteration, we choose r such that w ( r ) A i − 1 ∩ Auth ( r ) � = ∅ and γ ( r ) = | A i − 1 ∩ Auth ( r ) | is minimized 12th ACM Symposium on Access Control Models and Technologies Liang Chen · Jason Crampton

  13. IDRM and Least Privilege · An availability approach to IDRM An example • Given { p 2 , p 3 , p 4 } , Q = then R Q = { r 1 , r 2 , r 3 , r 4 } , w ( r 1 ) = 31 3 , r 1 t w ( r 2 ) = w ( r 3 ) = 1 3 , w ( r 4 ) = 10 ✁ ❆ 3 ✁ ❆ ✁ ❆ • The first iteration of the greedy al- ✁ ❆ gorithm selects r 3 since γ ( r 3 ) = 1 6 , ✁ ❆ ✁ ❆ and then selects r 4 , at which point ✁ ❆ t r 2 t r 3 t r 4 the algorithm terminates • The solution { r 3 , r 4 } is an optimal t t t t t solution for the IDRM problem (at p 1 p 2 p 3 p 4 p 5 least with respect to availability) • The algorithm does not necessarily compute an optimal solution (see proceedings) 12th ACM Symposium on Access Control Models and Technologies Liang Chen · Jason Crampton

  14. IDRM and Least Privilege · A safety approach to IDRM Basic idea • Recall that we want to ensure that Auth ( R ′ ) ⊆ Q , | Auth ( R ′ ) | is maximized, and | R ′ | is a minimized • Given Q ∈ P , we compute R Q = { r ∈ R : Auth ( r ) ⊆ Q } • Given R Q , Q ′ = Auth ( R Q ) ⊆ Q and { Auth ( r ) : r ∈ R Q } , find R ′ Q ⊆ R Q such that � Auth ( r ) = Q ′ | R ′ Q | and is minimized r ∈ R ′ Q 12th ACM Symposium on Access Control Models and Technologies Liang Chen · Jason Crampton

  15. IDRM and Least Privilege · A safety approach to IDRM Solution • We simply map the standard set covering optimization problem to the IDRM problem (defined in terms of safety) • The greedy algorithm is applied to compute R ′ Q , and the weight w ( r ) is 1 for all r 12th ACM Symposium on Access Control Models and Technologies Liang Chen · Jason Crampton

  16. IDRM and Least Privilege · A safety approach to IDRM An example r 1 • Given Q = { p 2 , p 3 , p 4 } , then R Q = t ✁ ❆ { r 2 , r 3 } and Q ′ = { p 2 , p 3 } ✁ ❆ ✁ ❆ ✁ ❆ • The first iteration of the greedy al- ✁ ❆ gorithm selects r 3 since γ ( r 3 ) = 1 2 , ✁ ❆ ✁ ❆ at which point the algorithm ter- t r 2 t r 3 t r 4 minates – Auth ( r 3 ) = { p 2 , p 3 } ⊆ Q t t t t t p 1 p 2 p 3 p 4 p 5 – The solution { r 3 } is an optimal solution for the IDRM problem (in terms of safety) 12th ACM Symposium on Access Control Models and Technologies Liang Chen · Jason Crampton

  17. IDRM and Least Privilege · Conclusion and future work Conclusion and future work • We examined the IDRM problem from two different perspectives – Availability and least privilege – Safety – The greedy algorithm for the weighted set cover problem computes an approximate solution to the IDRM problem but might not return an optimal solution for availability • We also examine these problem in the context of ERBAC07, TRBAC07 and ETRBAC07 (see proceedings) • We would like to see if there are other heuristics for the availability problem and to compare these alternatives with the weighted set cover greedy algorithm 12th ACM Symposium on Access Control Models and Technologies Liang Chen · Jason Crampton

  18. IDRM and Least Privilege · Questions Questions 12th ACM Symposium on Access Control Models and Technologies Liang Chen · Jason Crampton

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

1 Inter-Domain Routing Network comprised of many Autonomous Systems (ASes) or domains 23

1 Inter-Domain Routing Network comprised of many Autonomous Systems (ASes) or domains 23

CSE/EE 461 Lecture 11 Inter-domain Routing This Lecture Focus How do we make routing scale? Application Presentation Inter-domain routing Session ASes and BGP Transport Network Data Link Physical sdg // CSE/EE 461,

395 views • 5 slides
Inter-Domain DOTS Use Cases draft-nishizuka-dots-inter-domain-usecases-00 Kaname Nishizuka, NTT

Inter-Domain DOTS Use Cases draft-nishizuka-dots-inter-domain-usecases-00 Kaname Nishizuka, NTT

Inter-Domain DOTS Use Cases draft-nishizuka-dots-inter-domain-usecases-00 Kaname Nishizuka, NTT Communications Nov. 2015 IETF94@yokohama Draft Overview Motivation The volume of DDoS attack will exceed available anti- DDoS capability by

802 views • 10 slides
How NOC manages and controls inter-domain traffic? 5 th tf-noc meeting, Dubrovnik

How NOC manages and controls inter-domain traffic? 5 th tf-noc meeting, Dubrovnik

How NOC manages and controls inter-domain traffic? 5 th tf-noc meeting, Dubrovnik nino.ciurleo@garr.it Agenda Inter-domain traffic: o how does NOC monitor and control it? Common case as example: new BGP peer activation -> new

479 views • 35 slides
CS 557 Inter-Domain Routing Introduction to BGP Routing Tutorial slides from Tim Griffin, 2001

CS 557 Inter-Domain Routing Introduction to BGP Routing Tutorial slides from Tim Griffin, 2001

CS 557 Inter-Domain Routing Introduction to BGP Routing Tutorial slides from Tim Griffin, 2001 Spring 2013 Inter-domain Routing 2153 11537 1706 52 FRGP Level 3 ARIZONA ColoState Autonomous Systems (AS) Border Gateway Protocol

566 views • 30 slides
Bootstrapping evolvability for inter-domain routing with D-BGP Raja Sambasivan David Tran-Lam,

Bootstrapping evolvability for inter-domain routing with D-BGP Raja Sambasivan David Tran-Lam,

Bootstrapping evolvability for inter-domain routing with D-BGP Raja Sambasivan David Tran-Lam, Aditya Akella, Peter Steenkiste This talk in one slide What evolvability features needed in any Q inter-domain protocol? New New Existing

609 views • 26 slides
Inter-Domain Routing Security Inter-Domain Routing Security ~ ~BGP BGP Route Hijacking~ Route

Inter-Domain Routing Security Inter-Domain Routing Security ~ ~BGP BGP Route Hijacking~ Route

Inter-Domain Routing Security Inter-Domain Routing Security ~ ~BGP BGP Route Hijacking~ Route Hijacking~ Mar 1 2007 in APRICOT 2007 NTT Communications Corp. Taka Mizuguchi Tomoya Yoshida What s BGP Route Hijacking? s BGP Route

583 views • 40 slides
Bootstrapping evolvability for inter-domain routing Raja Sambasivan , David Tran-Lam, Aditya

Bootstrapping evolvability for inter-domain routing Raja Sambasivan , David Tran-Lam, Aditya

Bootstrapping evolvability for inter-domain routing Raja Sambasivan , David Tran-Lam, Aditya Akella, Peter Steenkiste Inter-domain routing is stagnant Many proposed fi xes/replacements for BGP E.g., LISP [RFC 6830], S-BGP [SAC00], Wiser,

350 views • 23 slides
Inter-Domain Lies Based on TMA 2019 Paper - Focus on Infrastructure Julian M. Del Fiore Pascal

Inter-Domain Lies Based on TMA 2019 Paper - Focus on Infrastructure Julian M. Del Fiore Pascal

Filtering the Noise to Reveal Inter-Domain Lies Based on TMA 2019 Paper - Focus on Infrastructure Julian M. Del Fiore Pascal Merindol, Valerio Persico, Cristel Pelsser, Antonio Pescape AS C AS D p2p AS B AS X AS E Inter-Domain Lie

109 views • 9 slides
A Reproducibility Study of IP Spoofing Detection in Inter-Domain Traffic Jasper Eumann

A Reproducibility Study of IP Spoofing Detection in Inter-Domain Traffic Jasper Eumann

A Reproducibility Study of IP Spoofing Detection in Inter-Domain Traffic Jasper Eumann October 9, 2019 iNET RG, Hamburg University of Applied Sciences Overview IP Spoofing Mitigation in General Detection in Inter-Domain Traffic

778 views • 42 slides
Bloom Filter based Inter-domain Name Resolution: A Feasibility Study Konstantinos V. Katsaros,

Bloom Filter based Inter-domain Name Resolution: A Feasibility Study Konstantinos V. Katsaros,

Bloom Filter based Inter-domain Name Resolution: A Feasibility Study Konstantinos V. Katsaros, Wei Koong Chai and George Pavlou University College London, UK Outline Inter-domain name resolution in ICN Scalability concerns Bloom

694 views • 33 slides
Minimal Domain Expertise in a Financial Domain Mayank Kejriwal Role Relevance Problem In the

Minimal Domain Expertise in a Financial Domain Mayank Kejriwal Role Relevance Problem In the

Predicting Role Relevance with Minimal Domain Expertise in a Financial Domain Mayank Kejriwal Role Relevance Problem In the context of a text fragment, how relevant are the triples? "For the year ended December 31, 2015, billed business

478 views • 11 slides
Crossing Over the Bounded Domain: From Exponential To Power-law Inter- meeting time in MANET Han

Crossing Over the Bounded Domain: From Exponential To Power-law Inter- meeting time in MANET Han

Crossing Over the Bounded Domain: From Exponential To Power-law Inter- meeting time in MANET Han Cai, Do Young Eun Department of Electrical and Computer Engineering North Carolina State University Motivation inter-meeting time

720 views • 35 slides
CS 640: Introduction to Computer Networks Aditya Akella Lecture 11 - Inter-Domain Routing -

CS 640: Introduction to Computer Networks Aditya Akella Lecture 11 - Inter-Domain Routing -

CS 640: Introduction to Computer Networks Aditya Akella Lecture 11 - Inter-Domain Routing - BGP (Border Gateway Protocol) Intra -domain routing The Story So Far Routing protocols generate the forwarding table Two styles:

481 views • 12 slides
Inter-domain SDN Considera2ons Ronald van der Pol

Inter-domain SDN Considera2ons Ronald van der Pol

Inter-domain SDN Considera2ons Ronald van der Pol SURFnet Ronald.vanderPol@SURFnet.nl GLIF, 17 January 2013, Honolulu, USA Dis2nguish between:

575 views • 8 slides
Towards a Next- Generation Inter-domain Routing Protocol L. Subramanian, M. Caesar, C.T. Ee, M.

Towards a Next- Generation Inter-domain Routing Protocol L. Subramanian, M. Caesar, C.T. Ee, M.

Towards a Next- Generation Inter-domain Routing Protocol L. Subramanian, M. Caesar, C.T. Ee, M. Handley , Z. Mao, S. Shenker, and I. Stoica Routing 1999 Internet Map Coloured by ISP Source: Bill Cheswick, Lumeta AS-level Topology 2003

946 views • 37 slides
Privilege: An Update Litigation Privilege: a brief definition Confidential Made for

Privilege: An Update Litigation Privilege: a brief definition Confidential Made for

Privilege: An Update Litigation Privilege: a brief definition Confidential Made for dominant purpose of civil or criminal litigation Relate to litigation which is pending, reasonably contemplated, or existing Legal Advice Privilege:

532 views • 20 slides
Remarks on 2PI formalisms and the fRG Functional Renormalization from quantum gravity and

Remarks on 2PI formalisms and the fRG Functional Renormalization from quantum gravity and

Remarks on 2PI formalisms and the fRG Functional Renormalization from quantum gravity and dark energy to ultracold atoms and condensed matter Heidelberg, March 10, 2017 Based on work done in collaboration with J. Pawlowski and U. Reinosa A

585 views • 15 slides
Towards a Synchronous React ive UML Prof ile? Robert de Simone Charles Andr SVERTS

Towards a Synchronous React ive UML Prof ile? Robert de Simone Charles Andr SVERTS

Towards a Synchronous React ive UML Prof ile? Robert de Simone Charles Andr SVERTS San Francisco 2003 Charles ANDRE Synchronous hypot heses S/ R st ands f or Synchronous React ive Logical division of t ime int o inst ant

349 views • 16 slides
Trace-based detection of lock contention in MPI one-sided communication Marc-Andr e Hermanns

Trace-based detection of lock contention in MPI one-sided communication Marc-Andr e Hermanns

Trace-based detection of lock contention in MPI one-sided communication Marc-Andr e Hermanns Bernd Mohr Felix Wolf October 4, 2016 Parallel Tools Workshop, Stuttgart Motivation The Message Passing Interface (MPI) standard De-facto

685 views • 31 slides
Final Project: First Steps ARTSCI 101: From Data to Insight Adrienne Aiken Morgan, PhD

Final Project: First Steps ARTSCI 101: From Data to Insight Adrienne Aiken Morgan, PhD

Final Project: First Steps ARTSCI 101: From Data to Insight Adrienne Aiken Morgan, PhD 7/21/16 Todays Plan Check in Overview of Research Proposals Final Project: Steps (1), 2 and 3 (Research topic)

481 views • 19 slides
Neural Entity Linking on Technical Service Tickets Nadja Kurz, Felix Hamann, Adrian Ulges

Neural Entity Linking on Technical Service Tickets Nadja Kurz, Felix Hamann, Adrian Ulges

Neural Entity Linking on Technical Service Tickets Nadja Kurz, Felix Hamann, Adrian Ulges felix.hamann@hs-rm.de 6/25/2020 Knowledge Management Documentation is scarce and heterogeneous Laser- diode Scanning Device Am Verleimteil

512 views • 12 slides
NTRU Cryptosystem: Recent Developments Ron Steinfeld School of IT Monash University, Australia

NTRU Cryptosystem: Recent Developments Ron Steinfeld School of IT Monash University, Australia

Introduction NTRU Cryptosystem: Review NTRU Security: Recent Developments NTRU Applications: Recent Developments NTRU Cryptosystem: Recent Developments Ron Steinfeld School of IT Monash University, Australia (partly based on joint work with

1.29k views • 76 slides
Evaluating Network Security Using Internet-wide Measurements Oliver Gasser Ph. D. Defense, Friday

Evaluating Network Security Using Internet-wide Measurements Oliver Gasser Ph. D. Defense, Friday

Chair of Network Architectures and Services Department of Informatics Technical University of Munich Evaluating Network Security Using Internet-wide Measurements Oliver Gasser Ph. D. Defense, Friday 24 th May, 2019 Chairman: Prof. Dr. Jrg

877 views • 55 slides
KAM Tori Are No More Than Sticky Rome, 58 February 2019 David Sauzin, CNRS IMCCE UMR 8028

KAM Tori Are No More Than Sticky Rome, 58 February 2019 David Sauzin, CNRS IMCCE UMR 8028

KAM Tori Are No More Than Sticky Rome, 58 February 2019 David Sauzin, CNRS IMCCE UMR 8028 Observatoire de Paris PSL Research University 1/13 Theorem (B.Fayad-D.S. 2018) 2/13 Theorem (B.Fayad-D.S. 2018) For any N 3, the

1.81k views • 111 slides

More recommend