le lecture 15 15
play

Le Lecture 15 15 Access Control 1 Recall: Secu curity Service - PowerPoint PPT Presentation

Dec 29, 2022 •327 likes •656 views

Le Lecture 15 15 Access Control 1 Recall: Secu curity Service ces Confidentiality: to assure information privacy and secrecy Authentication: to assert who created or sent data Integrity: to show that data has not been altered

  1. Le Lecture 15 15 Access Control 1

  2. Recall: Secu curity Service ces • Confidentiality: to assure information privacy and secrecy • Authentication: to assert who created or sent data • Integrity: to show that data has not been altered • Access Control: to prevent misuse of resources • Availability: to offer access to resources, permanence, non- erasure Examples of attacks on Availability: – Denial of Service (DoS) Attacks • e.g., against a name server – Malware that deletes or encrypts files 2

  3. Acce ccess Control (AC) • A “language” for expressing access control policies: who can access what, how and when … • Enforcement of access control • Identify all resources (objects) and their granularity • Identify all potential users (subjects) • Specify rules for subject/object interaction • Guard them in real time 3

  4. Mo Mode del a and T nd Term rmino nology Subjects: users or processes • Objects: resources (files, memory, printers, • routers, plotters, disks, processes, etc., etc.,...) 4

  5. Focu cus of Acce ccess Control What a subject is allowed to do • What may be done with an object • 5

  6. Acce ccess Modes “Look” at an object, e.g.: • Read file • Check printer queue • Print remote screen • Query database • etc., etc. • “Change” an object, e.g.: • Write/append/erase file • Print or fax • Display on screen • etc., etc. • 6

  7. Acce ccess Rights execute, read, append, and write Execute Append Write Read X Observe Alter X X X 7

  8. UN UNIX/Linux nux/*x Ope perating ng Systems execute: execute (program) file, search directory • read: read from file, list directory • write: write (re-write or append) file, create or • rename file in directory 8

  9. Exampl Ex ple: Windo ndows NT/2000 (NTFS) execute • read • write • delete • change permission • change ownership • 9

  10. AC AC Types Who is in charge of setting AC policy? Discretionary: resource owner • Mandatory: system-wide policy • 10

  11. Acce ccess Control Struct ctures i. Access Control Matrix ii. Capabilities iii. Access Control Lists 11

  12. Acce ccess Control Matrix Object Bill.doc Edit.exe Fun.com Alice {execute} {execute,read} {0} Subject Bob {read,write} {execute} {execute,read,write} 12

  13. Acce ccess Control Lists 1/2 Keep access rights to an object with that object: § ACL for bill.doc: § Bob: read, write § ACL for edit.exe: § Alice: execute; § Bob: execute § ACL for fun.com: § Alice: execute, read; § Bill: execute, read, write • As many ACLs as there are objects • Each ACL either signed or stored in protected place • Hard to manage 13

  14. Acce ccess Control Lists 2/2 Managing access rights can be difficult • Groups can be helpful … • Groups simplify definition of access control • policies 14

  15. Acce ccess Control Lists S2 S3 S1 G1 X O5 O4 O3 O2 O1 15

  16. Ca Capabiliti ties es 1/ 1/2 Capabilities are associated with discretionary • access control Reason: difficult to get full view of who has • permission to access an object Very difficult to revoke a capability • (owners/objects have to keep track of all issued capabilities) • As many capabilities as there are subject/object pairs • Each capability either signed or otherwise protected • Hard to revoke in a distributed setting 16

  17. Ca Capabiliti ties es 2/ 2/2 Keep access rights with the subject: • Alice's capabilities: • [edit.exe:execute]; • [fun.com:execute,read] • Bob's capabilities: • [bill.doc:read,write] • [edit.exe:execute] • [fun.com:execute,read,write] 17

  18. In In Su Summa mmary Centralized Systems: • ACLs are better • Distributed Systems: • Capabilities are better • 18

  19. Example: Android Security/Permissions 19

  20. Android Security Model • Application-level permissions model • Controls access to app components • Controls access to system resources • Specified by the app writers and seen by the users • Kernel-level sandboxing and isolation • Isolate apps from each other and the system • Prevent bypass of application-level controls • Relies on Linux Discretionary Access Control (DAC) • Normally invisible to the users and app writers 20

  21. Discretionary Access Control (DAC) • Typical form of access control in Linux • Access to data is entirely at the discretion of the owner/creator of the data • Some processes (e.g., uid 0) can override and some objects (e.g., sockets) are unchecked • Based on user & group identity • Limited granularity, coarse-grained privilege 21

  22. Android and DAC • Restrict use of system facilities by apps • e.g., bluetooth, network, storage access • requires kernel modifications, “special” group IDs • Isolate apps from each other • unique user and group ID per installed app • assigned to app processes and files • Hardcoded, scattered “policy” 22

  23. Security Enhanced (SE)Linux : What is it? • Mandatory Access Control (MAC) for Linux • Defines and enforces a system-wide security policy • Over all processes, objects, and operations • Based on security labels • Can confine flawed and malicious applications • Even ones that run as “root”/uid 0 • Can prevent privilege escalation 23

  24. How Can SELinux Help Android? • Confine privileged daemons • Protect them from misuse • Limit the damage that can be done via them • Sandbox and isolate apps • Strongly separate apps from each other and from the system • Prevent privilege escalation by apps • Provide centralized, analyzable policy 24

  25. Security Enhanced (SE)Linux in Android More details at: http://selinuxproject.org/~jmorris/lss2011_slides/caseforseandroid.pdf 25

  26. ROLE BASED ACCESS CONTROL (RBAC) 26

  27. RBAC Basics • Users are associated with roles • Roles are associated with permissions • A user has permission only if s/he has a role associated with that permission 27

  28. Example: The Three Musketeers (User/Permission Association) Athos Aramis palace uniform Porthos weapons 28

  29. Example: The Three Musketeers (RBAC) Athos palace Porthos Musketeer Aramis uniform weapons Athos Aramis palace uniform Porthos weapons 29

  30. Example: The Three Musketeers (RBAC) Athos palace Porthos Musketeer Aramis uniform weapons Athos Aramis palace uniform Porthos weapons 30

  31. Example: The Three Musketeers (RBAC) Athos palace Porthos Musketeer Aramis uniform weapons Here RBAC doesn ’ t work … Athos Aramis palace uniform Porthos weapons 31

  32. Example: (D ’ Artagnon becomes a Musketeer) palace D'Artagnan Musketeer uniform weapons palace D'Artagnan uniform weapons 32

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Lecture # 5 - Monday, Aug 30th In this lecture I reviewed the previous lecture 4, and then

Lecture # 5 - Monday, Aug 30th In this lecture I reviewed the previous lecture 4, and then

Lecture # 5 - Monday, Aug 30th In this lecture I reviewed the previous lecture 4, and then reviewed the final point of lecture #3: Hennigs logical approach to tree inference is valid as logic, but we have a hard time using it because our data

660 views • 7 slides
Algorithms (2IL15) Lecture 13 Wrap-up lecture 1 TU/e Algorithms (2IL15) Lecture 13

Algorithms (2IL15) Lecture 13 Wrap-up lecture 1 TU/e Algorithms (2IL15) Lecture 13

TU/e Algorithms (2IL15) Lecture 13 Algorithms (2IL15) Lecture 13 Wrap-up lecture 1 TU/e Algorithms (2IL15) Lecture 13 Part I of the course: Optimization Problems we want to find valid solution minimizing cost (or maximizing

904 views • 20 slides
In 2020SP, this lecture and lecture 20 are both optional extra material CS 5412/LECTURE 17 Ken

In 2020SP, this lecture and lecture 20 are both optional extra material CS 5412/LECTURE 17 Ken

In 2020SP, this lecture and lecture 20 are both optional extra material CS 5412/LECTURE 17 Ken Birman LEAVE NO TRACE BEHIND Spring, 2020 HTTP://WWW.CS.CORNELL.EDU/COURSES/CS5412/2020SP 1 THE PRIVACY PUZZLE FOR I O T We have sensors

1.04k views • 65 slides
Recall last lecture ... Lecture 8 Also last lecture: Painter's Algorithm More Hidden Surface

Recall last lecture ... Lecture 8 Also last lecture: Painter's Algorithm More Hidden Surface

Recall last lecture ... Lecture 8 Also last lecture: Painter's Algorithm More Hidden Surface Removal Sort polygons in depth. Use the farthest vertex in each polygon as the sorting key. Efficient Painter - binary space partition (BSP)

563 views • 6 slides
Plan Lecture 1 - String diagrams and symmetric monoidal categories Lecture 2 -

Plan Lecture 1 - String diagrams and symmetric monoidal categories Lecture 2 -

Plan Lecture 1 - String diagrams and symmetric monoidal categories Lecture 2 - Resource-sensitive algebraic theories Lecture 3 - Interacting Hopf monoids and graphical linear algebra Lecture 4 - Signal Flow Graphs and recurrence

1.2k views • 61 slides
Where are we at - Topic overview Lecture 1A: Security requirements/features Lecture 7A

Where are we at - Topic overview Lecture 1A: Security requirements/features Lecture 7A

Where are we at - Topic overview Lecture 1A: Security requirements/features Lecture 7A Threatens Privacy Threatens Try to achieve Lecture 2B: Network threats Lecture 3A: Attacks on Lecture 6A: Security Protocols Web servers, malware

381 views • 25 slides
Lecture Capture Introduction to Lecture Capture Learning Outcomes What will lecture capture

Lecture Capture Introduction to Lecture Capture Learning Outcomes What will lecture capture

ISDS & Digital Business Skills Lecture Capture Introduction to Lecture Capture Learning Outcomes What will lecture capture actually do? What happens before a lecture? What happens during a lecture? What does the button do?

527 views • 18 slides
CSE 158 Lecture 4 Web Mining and Recommender Systems More Classifiers Last lecture How

CSE 158 Lecture 4 Web Mining and Recommender Systems More Classifiers Last lecture How

CSE 158 Lecture 4 Web Mining and Recommender Systems More Classifiers Last lecture How can we predict binary or categorical variables? {0,1}, {True, False} {1, , N} Last lecture Will I purchase this product? (yes) Will I click

1.74k views • 60 slides
CSE 158 Lecture 4 Web Mining and Recommender Systems More Classifiers Last lecture How

CSE 158 Lecture 4 Web Mining and Recommender Systems More Classifiers Last lecture How

CSE 158 Lecture 4 Web Mining and Recommender Systems More Classifiers Last lecture How can we predict binary or categorical variables? {0,1}, {True, False} {1, , N} Last lecture Will I purchase this product? (yes) Will I click

850 views • 46 slides
CSE 158 Lecture 4 Web Mining and Recommender Systems More Classifiers Last lecture How

CSE 158 Lecture 4 Web Mining and Recommender Systems More Classifiers Last lecture How

CSE 158 Lecture 4 Web Mining and Recommender Systems More Classifiers Last lecture How can we predict binary or categorical variables? {0,1}, {True, False} {1, , N} Last lecture Will I purchase this product? (yes) Will I click

839 views • 58 slides
Usability of Programming Languages Lecture 4 - directed by your research interests Lecture

Usability of Programming Languages Lecture 4 - directed by your research interests Lecture

Overview Practical experimental course lectures are only introductory Lecture 1 - theoretical principles classic approaches l h current trends in leading research. Lecture 2 - candidate research methods advantages and

499 views • 15 slides
Introduction to AI & Intelligent Agents This Lecture Chapters 1 and 2 Next Lecture

Introduction to AI & Intelligent Agents This Lecture Chapters 1 and 2 Next Lecture

Introduction to AI & Intelligent Agents This Lecture Chapters 1 and 2 Next Lecture Chapter 3.1 to 3.4 (Please read lecture topic material before and after each lecture on that topic) What is Artificial Intelligence? Thought

636 views • 31 slides
Introduction to Numerical Optimization Biostatistics 615/815 Lecture 14 Lecture 14 Course is

Introduction to Numerical Optimization Biostatistics 615/815 Lecture 14 Lecture 14 Course is

Introduction to Numerical Optimization Biostatistics 615/815 Lecture 14 Lecture 14 Course is More Than Half Done! If you have comments they are very welcome y y Lectures Lecture notes Weekly Homework Midterm

795 views • 42 slides
Lecture 12: Clustering 1 6.0002 LECTURE 12 Re Reading Chapter 23 6.0002 LECTURE 12 2 Mach Ma

Lecture 12: Clustering 1 6.0002 LECTURE 12 Re Reading Chapter 23 6.0002 LECTURE 12 2 Mach Ma

Lecture 12: Clustering 1 6.0002 LECTURE 12 Re Reading Chapter 23 6.0002 LECTURE 12 2 Mach Ma chine e Lea earn rning Paradigm Observe set of examples: training data Infer something about process that generated that data Use

847 views • 36 slides
Lecture Outline Regeltechniek Previous lecture: Stability and transient response. Lecture 4

Lecture Outline Regeltechniek Previous lecture: Stability and transient response. Lecture 4

Lecture Outline Regeltechniek Previous lecture: Stability and transient response. Lecture 4 Basics of Feedback Control Robert Babu ska Today: Steady-state response. Delft Center for Systems and Control Faculty of Mechanical

388 views • 7 slides
Psycholinguistics Lecture 2 By Dr.Chelli Lecture Objectives At the end of this lecture, students

Psycholinguistics Lecture 2 By Dr.Chelli Lecture Objectives At the end of this lecture, students

Psycholinguistics Lecture 2 By Dr.Chelli Lecture Objectives At the end of this lecture, students will be able to: Discuss the different stages in the history of psycholinguistics Identify the scholars in the field of psycholinguistics

589 views • 28 slides
Scaling Backend Authentication at Facebook Kevin Lewi , Callen Rain , Stephen Weis, Yueting Lee,

Scaling Backend Authentication at Facebook Kevin Lewi , Callen Rain , Stephen Weis, Yueting Lee,

Scaling Backend Authentication at Facebook Kevin Lewi , Callen Rain , Stephen Weis, Yueting Lee, Haozhi Xiong, Benjamin Yang Facebook Infrastructure Security Network Perimeter Trusted Services Building from a Root of Trust ] "

288 views • 24 slides
Lean in Lean Leonardo de Moura - MSR - USA Workshop Lean Programming Language Goals

Lean in Lean Leonardo de Moura - MSR - USA Workshop Lean Programming Language Goals

Programming Language http://leanprover.github.io Lean in Lean Leonardo de Moura - MSR - USA Workshop Lean Programming Language Goals Extensibility, Expressivity, Scalability, Proof stability Functional Programming (e ffi ciency)

1.13k views • 54 slides
CompSci514/ECE558: Computer Networks Lecture 17: Programmable Switches Xiaowei Yang

CompSci514/ECE558: Computer Networks Lecture 17: Programmable Switches Xiaowei Yang

CompSci514/ECE558: Computer Networks Lecture 17: Programmable Switches Xiaowei Yang xwy@cs.duke.edu http://www.cs.duke.edu/~xwy Some slides are adapted from Prof Nick McKeowns lecture slides Overview The Trio of modern networking

803 views • 54 slides
Lillian Lee, Cornell University http://www.cs.cornell.edu/home/llee The one equation in this talk

Lillian Lee, Cornell University http://www.cs.cornell.edu/home/llee The one equation in this talk

Big data pragmatics! or Putting the ACL in computational social science or If you think these title alternatives could turn people on, turn people off, or otherwise have an effect, this talk might be for you. Lillian

604 views • 36 slides
NFSv4.1, ACL and Co. Tigran Mkrtchyan For dCache Team ACL basics (for file system) ACLs is a

NFSv4.1, ACL and Co. Tigran Mkrtchyan For dCache Team ACL basics (for file system) ACLs is a

NFSv4.1, ACL and Co. Tigran Mkrtchyan For dCache Team ACL basics (for file system) ACLs is a list of Access Control Entries attached to a file or a directory ACEs grant or deny a principal an action on a file or a directory ACL basics

379 views • 34 slides
Annotation Graphs, Annotation Servers and Multi-Modal Resources Infrastructure for

Annotation Graphs, Annotation Servers and Multi-Modal Resources Infrastructure for

Annotation Graphs, Annotation Servers and Multi-Modal Resources Infrastructure for Interdisciplinary Education, Research and Development Christopher Cieri and Steven Bird University of Pennsylvania Linguistic Data Consortium

439 views • 13 slides
Adversarial Examples in NLP Sameer Singh sameer@uci.edu @sameer_ sameersingh.org What are

Adversarial Examples in NLP Sameer Singh sameer@uci.edu @sameer_ sameersingh.org What are

Slides: http://tiny.cc/adversarial Adversarial Examples in NLP Sameer Singh sameer@uci.edu @sameer_ sameersingh.org What are Adversarial Examples? panda gibbon 57.7% confidence 99.3% confidence [Goodfellow et al, ICLR 2015 ]

1.56k views • 43 slides
You Talking to Me? A Corpus and Algorithm for Conversation Disentanglement Micha Elsner and

You Talking to Me? A Corpus and Algorithm for Conversation Disentanglement Micha Elsner and

You Talking to Me? A Corpus and Algorithm for Conversation Disentanglement Micha Elsner and Eugene Charniak Brown Laboratory for Linguistic Information Processing (BLLIP) Life in a Multi-User Channel Does anyone here shave How do I limit the

445 views • 40 slides

More recommend