the
play

THE ENEMY AND HE IS US U C U C D A VI S CA LABS MATT BISHOP - PowerPoint PPT Presentation

Dec 18, 2022 •317 likes •1.26k views

WE HAVE MET THE ENEMY AND HE IS US U C U C D A VI S CA LABS MATT BISHOP CARRIE GATES SOPHIE ENGLE SEAN PEISERT LAKE TAHOE, CA SEAN WHALEN NSPW W 09.23. .23.2008 2008 MATT BISHOP SOPHIE ENGLE CARRIE GATES SEAN

  1. WE HAVE MET THE ENEMY AND HE IS US U C U C D A VI S CA LABS MATT BISHOP CARRIE GATES SOPHIE ENGLE SEAN PEISERT LAKE TAHOE, CA SEAN WHALEN NSPW W 09.23. .23.2008 2008 MATT BISHOP ∙ SOPHIE ENGLE ∙ CARRIE GATES ∙ SEAN PEISERT ∙ SEAN WHALEN WE HAVE MET THE ENEMY AND HE IS US SEPTEMBER 23 2008 ∙ LAKE TAHOE, CA ∙ SLIDE 1 NEW SECURITY PARADIGMS WORKSHOP

  2. WHAT WE Binary, perimeter-based definition SAW of insiders hinder threat analysis WHAT WE How to define and analyze the SHOW insider problem WHAT WE How to detect, deter, mitigate, DON’T SHOW or solve the insider problem WHY IT’S Identifies highest-risk resources IMPORTANT and highest-threat insiders MATT BISHOP ∙ SOPHIE ENGLE ∙ CARRIE GATES ∙ SEAN PEISERT ∙ SEAN WHALEN WE HAVE MET THE ENEMY AND HE IS US SEPTEMBER 23 2008 ∙ LAKE TAHOE, CA ∙ SLIDE 2 NEW SECURITY PARADIGMS WORKSHOP

  3. NAVIGATION Main Sections:  Part 1: Unifying Policy Hierarchy  Part 2: Existing Insider Definitions  Part 3: Attribute-Based Group Access Control Supplemental:  Definitions MATT BISHOP ∙ SOPHIE ENGLE ∙ CARRIE GATES ∙ SEAN PEISERT ∙ SEAN WHALEN WE HAVE MET THE ENEMY AND HE IS US SEPTEMBER 23 2008 ∙ LAKE TAHOE, CA ∙ SLIDE 3 NEW SECURITY PARADIGMS WORKSHOP

  4. PART 1 Understanding Insiders and Insider Threat

  5. CLAIMS • The complexity of security policy is key to understanding the insider problem. • Binary or perimeter-based definitions of an insider impede threat analysis. • The ABGAC model identifies “ insiderness ” with respect to a resource and allows for insider threat analysis. MATT BISHOP ∙ SOPHIE ENGLE ∙ CARRIE GATES ∙ SEAN PEISERT ∙ SEAN WHALEN WE HAVE MET THE ENEMY AND HE IS US SEPTEMBER 23 2008 ∙ LAKE TAHOE, CA ∙ SLIDE 5 NEW SECURITY PARADIGMS WORKSHOP

  6. SECURITY POLICY The Complexities

  7. POLICY EXAMPLE The Scenario:  Yasmin, a doctor, is only authorized to read and append medical records of her patients for the purpose of treating them. MATT BISHOP ∙ SOPHIE ENGLE ∙ CARRIE GATES ∙ SEAN PEISERT ∙ SEAN WHALEN WE HAVE MET THE ENEMY AND HE IS US SEPTEMBER 23 2008 ∙ LAKE TAHOE, CA ∙ SLIDE 7 NEW SECURITY PARADIGMS WORKSHOP

  8. POLICY EXAMPLE The Scenario:  Yasmin, a doctor, is only authorized to read and append medical records of her patients for the purpose of treating them. The Ideal Policy:  Yasmin is authorized to read {  } records for the purpose of treating {  } patients.  Yasmin is authorized to append {  } records for the purpose of treating {  } patients. Feasible? MATT BISHOP ∙ SOPHIE ENGLE ∙ CARRIE GATES ∙ SEAN PEISERT ∙ SEAN WHALEN WE HAVE MET THE ENEMY AND HE IS US SEPTEMBER 23 2008 ∙ LAKE TAHOE, CA ∙ SLIDE 8 NEW SECURITY PARADIGMS WORKSHOP

  9. POLICY EXAMPLE The Scenario:  Yasmin, a doctor, is only authorized to read and append medical records of her patients for the purpose of treating them. The Ideal Policy:  Yasmin is authorized to authenticate as yasmin .  yasmin is authorized to read {  } records.  yasmin is authorized to append {  } records. MATT BISHOP ∙ SOPHIE ENGLE ∙ CARRIE GATES ∙ SEAN PEISERT ∙ SEAN WHALEN WE HAVE MET THE ENEMY AND HE IS US SEPTEMBER 23 2008 ∙ LAKE TAHOE, CA ∙ SLIDE 9 NEW SECURITY PARADIGMS WORKSHOP

  10. POLICY EXAMPLE The Scenario:  Yasmin, a doctor, is only authorized to read and append medical records of her patients for the purpose of treating them. The Ideal Policy:  Yasmin is authorized to authenticate as yasmin .  yasmin is authorized to read {  } records.  yasmin is authorized to append {  } records. Practical? MATT BISHOP ∙ SOPHIE ENGLE ∙ CARRIE GATES ∙ SEAN PEISERT ∙ SEAN WHALEN WE HAVE MET THE ENEMY AND HE IS US SEPTEMBER 23 2008 ∙ LAKE TAHOE, CA ∙ SLIDE 10 NEW SECURITY PARADIGMS WORKSHOP

  11. POLICY EXAMPLE The Scenario:  Yasmin, a doctor, is only authorized to read and append medical records of her patients for the purpose of treating them. The Ideal Policy:  Yasmin is authorized to authenticate as yasmin .  yasmin is authorized to read all records.  yasmin is authorized to write all records. Possible? MATT BISHOP ∙ SOPHIE ENGLE ∙ CARRIE GATES ∙ SEAN PEISERT ∙ SEAN WHALEN WE HAVE MET THE ENEMY AND HE IS US SEPTEMBER 23 2008 ∙ LAKE TAHOE, CA ∙ SLIDE 11 NEW SECURITY PARADIGMS WORKSHOP

  12. POLICY EXAMPLE The Scenario:  Yasmin, a doctor, is only authorized to read and append medical records of her patients for the purpose of treating them. The Ideal Policy:  Yasmin is authorized to authenticate as yasmin .  yasmin is authorized to read all records.  yasmin is authorized to write all records.  yasm smin in can delete all records. Exploit! MATT BISHOP ∙ SOPHIE ENGLE ∙ CARRIE GATES ∙ SEAN PEISERT ∙ SEAN WHALEN WE HAVE MET THE ENEMY AND HE IS US SEPTEMBER 23 2008 ∙ LAKE TAHOE, CA ∙ SLIDE 12 NEW SECURITY PARADIGMS WORKSHOP

  13. POLICY EXAMPLE The Scenario:  Yasmin, a doctor, is only authorized to read and append medical records of her patients for the purpose of treating them. The Different Policies:  What is ideal?  What is feasible?  What is practical?  What is possible? MATT BISHOP ∙ SOPHIE ENGLE ∙ CARRIE GATES ∙ SEAN PEISERT ∙ SEAN WHALEN WE HAVE MET THE ENEMY AND HE IS US SEPTEMBER 23 2008 ∙ LAKE TAHOE, CA ∙ SLIDE 13 NEW SECURITY PARADIGMS WORKSHOP

  14. SECURITY POLICY The Unifying Policy Hierarchy

  15. UNIFYING POLICY HIERARCHY What is the Unifying Policy Hierarchy?  Introduced by Carlson in 2006: • Carslon , Adam, “The Unifying Policy Hierarchy Model,” Master’s Thesis, UC Davis, June 2006.  A hierarchical model of security policy at different levels of abstraction. What is it good for?  Analyzing gaps in the hierarchy lead to insight to where and why problems occur MATT BISHOP ∙ SOPHIE ENGLE ∙ CARRIE GATES ∙ SEAN PEISERT ∙ SEAN WHALEN WE HAVE MET THE ENEMY AND HE IS US SEPTEMBER 23 2008 ∙ LAKE TAHOE, CA ∙ SLIDE 15 NEW SECURITY PARADIGMS WORKSHOP

  16. EXAMPLE SCENARIO The Scenario:  Yasmin, a doctor, is only authorized to read and append medical records of her patients for the purpose of treating them. MATT BISHOP ∙ SOPHIE ENGLE ∙ CARRIE GATES ∙ SEAN PEISERT ∙ SEAN WHALEN WE HAVE MET THE ENEMY AND HE IS US SEPTEMBER 23 2008 ∙ LAKE TAHOE, CA ∙ SLIDE 16 NEW SECURITY PARADIGMS WORKSHOP

  17. EXAMPLE SCENARIO Oracle Policy (Ideal) OP( subject, object, action, environment/intent ) = { authorized , unauthorized } OP( s,o,a,e ) = authorized  Yasmin, yasmin , authenticate, any  yasmin , {  } records, read, treating {  } patients  yasmin , {  } records, append, treating {  } patients MATT BISHOP ∙ SOPHIE ENGLE ∙ CARRIE GATES ∙ SEAN PEISERT ∙ SEAN WHALEN WE HAVE MET THE ENEMY AND HE IS US SEPTEMBER 23 2008 ∙ LAKE TAHOE, CA ∙ SLIDE 17 NEW SECURITY PARADIGMS WORKSHOP

  18. EXAMPLE SCENARIO Feasible Policy (Feasible) FP( subject, object, action ) = { authorized , unauthorized, unknown }  FP( yasmin , {  } records, read ) = authorized  FP( yasmin , {  } records, append ) = authorized  FP( Yasmin , yasmin , authenticate ) = unknown  FP( Xander , yasmin , authenticate ) = unknown MATT BISHOP ∙ SOPHIE ENGLE ∙ CARRIE GATES ∙ SEAN PEISERT ∙ SEAN WHALEN WE HAVE MET THE ENEMY AND HE IS US SEPTEMBER 23 2008 ∙ LAKE TAHOE, CA ∙ SLIDE 18 NEW SECURITY PARADIGMS WORKSHOP

  19. EXAMPLE SCENARIO Configured Policy ( ≈ Practical) CP( subject, object, action ) = { authorized , unauthorized, unknown }  FP( yasmin , {  } records, read ) = authorized  FP( yasmin , {  } records, append ) = authorized  CP( yasmin , all records, read ) = authorized  CP( yasmin , all records, write ) = authorized MATT BISHOP ∙ SOPHIE ENGLE ∙ CARRIE GATES ∙ SEAN PEISERT ∙ SEAN WHALEN WE HAVE MET THE ENEMY AND HE IS US SEPTEMBER 23 2008 ∙ LAKE TAHOE, CA ∙ SLIDE 19 NEW SECURITY PARADIGMS WORKSHOP

  20. EXAMPLE SCENARIO Real-Time Policy (Possible) RP( subject, object, action ) = { possible , impossible }  OP( Xander, yasmin , authenticate ) = unauthorized  CP( yasmin , all records, delete ) = unauthorized  RP( Xander, yasmin , authenticate ) = possible  RP( yasmin , all records, delete ) = possible MATT BISHOP ∙ SOPHIE ENGLE ∙ CARRIE GATES ∙ SEAN PEISERT ∙ SEAN WHALEN WE HAVE MET THE ENEMY AND HE IS US SEPTEMBER 23 2008 ∙ LAKE TAHOE, CA ∙ SLIDE 20 NEW SECURITY PARADIGMS WORKSHOP

  21. POLICY GAPS Oracle/Feasible Gap  Technology Limitations Ex: user versus user account, user intent Feasible/Configured Gap  Configuration Errors Ex: slow removal of terminated employees Configured/Real-Time Gap  Implementation Errors and Vulnerabilities Ex: buffer overflow, runtime vulnerability MATT BISHOP ∙ SOPHIE ENGLE ∙ CARRIE GATES ∙ SEAN PEISERT ∙ SEAN WHALEN WE HAVE MET THE ENEMY AND HE IS US SEPTEMBER 23 2008 ∙ LAKE TAHOE, CA ∙ SLIDE 21 NEW SECURITY PARADIGMS WORKSHOP

  22. POLICY GAPS Action OP FP CP RP ? ?   Xander authenticates as xander .     xander accesses a website… ? ?   …to check the weather ? ?   …to expose system to exploit     Web browser leaks user password ? ?   Yasmin authenticates as xander . MATT BISHOP ∙ SOPHIE ENGLE ∙ CARRIE GATES ∙ SEAN PEISERT ∙ SEAN WHALEN WE HAVE MET THE ENEMY AND HE IS US SEPTEMBER 23 2008 ∙ LAKE TAHOE, CA ∙ SLIDE 22 NEW SECURITY PARADIGMS WORKSHOP

  23. UNIFYING POLICY HIERARCHY Understanding Insiders and Insider Threat

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Version 7.0 1 Historical Perspective Focus Dimension of Unexamined Outsiders Diversity

Version 7.0 1 Historical Perspective Focus Dimension of Unexamined Outsiders Diversity

Version 7.0 1 Historical Perspective Focus Dimension of Unexamined Outsiders Diversity Insiders Race People of Color White Women Men Gender Sexual Gay, Lesbian, Heterosexual Bi-Sexual Orientation Generations/Age

338 views • 7 slides
REMIT Coordination and enforcement Martin Godfried Head of the Market Surveillance and Conduct

REMIT Coordination and enforcement Martin Godfried Head of the Market Surveillance and Conduct

REMIT Coordination and enforcement Martin Godfried Head of the Market Surveillance and Conduct Department 3 rd Market integrity and Transparency Forum Ljubljana, 5 September 2019 Introduction: Market abuse under REMIT Regulation (EU) No

484 views • 9 slides
INTRO TO OOP FOR CONDITIONAL DATA SCIENCE STATEMENTS PROF. JOHN GAUCH OVERVIEW OVERVIEW

INTRO TO OOP FOR CONDITIONAL DATA SCIENCE STATEMENTS PROF. JOHN GAUCH OVERVIEW OVERVIEW

5/18/20 INTRO TO OOP FOR CONDITIONAL DATA SCIENCE STATEMENTS PROF. JOHN GAUCH OVERVIEW OVERVIEW OVERVIEW Many times we want programs to make decisions In Javathere are three types of conditional statements: What drink should we

195 views • 17 slides
The Challenge of Interdomain Innovation Ken Calvert University of Kentucky NIPAA 13 October

The Challenge of Interdomain Innovation Ken Calvert University of Kentucky NIPAA 13 October

The Challenge of Interdomain Innovation Ken Calvert University of Kentucky NIPAA 13 October 2020 1 Acknowledgments Thanks to many great collaborators: Ilya Baldin Billy Mullins Neil Spring Bobby Bhattacharjee Anna Nagurney

543 views • 51 slides
Current monetary policy and the economic situation Stefan Ingves Governor of the Riksbank Bank

Current monetary policy and the economic situation Stefan Ingves Governor of the Riksbank Bank

Current monetary policy and the economic situation Stefan Ingves Governor of the Riksbank Bank conference Di Bank 14 May 2019, Grand Hotel Strong economic activity but slightly weaker inflation Expansionary monetary policy providing support

453 views • 17 slides
Jrn-Marc Schmidt joern-marc.schmidt@iaik.tugraz.at Introduction and Adversaries Attack

Jrn-Marc Schmidt joern-marc.schmidt@iaik.tugraz.at Introduction and Adversaries Attack

Jrn-Marc Schmidt joern-marc.schmidt@iaik.tugraz.at Introduction and Adversaries Attack Setups Attacks in Theory Example: Square and Multiply Combined Attacks Conclusion, Outlook Fault Type Transient Permanent

439 views • 22 slides
Threat Models CS 5431 February 10, 2017 Threat Models Threats (CS 5430)

Threat Models CS 5431 February 10, 2017 Threat Models Threats (CS 5430)

Introduction Threat Models CS 5431 February 10, 2017 Threat Models Threats (CS 5430) Inquisitive people, unintentional blunders Hackers driven by technical challenges Disgruntled employees or

357 views • 23 slides
Instrumental Variables James H. Steiger Department of Psychology and Human Development

Instrumental Variables James H. Steiger Department of Psychology and Human Development

Introduction Omitted Variable Bias Revisited Instrumental Variable Algebra Two-Stage Least Squares Estimation Instrumental Variables James H. Steiger Department of Psychology and Human Development Vanderbilt University Multilevel Regression

601 views • 12 slides
Variables (IV) in Stata Austin Nichols 2019 London Stata Conference

Variables (IV) in Stata Austin Nichols 2019 London Stata Conference

Unbiased Instrumental Variables (IV) in Stata Austin Nichols 2019 London Stata Conference https://www.stata.com/meeting/uk19/ Magic Bullets Instrumental Variables (IV) methods are the only way to estimate causal effects in a variety of

345 views • 13 slides
UNIVERSITY OF CALIFORNIA Economics 134 DEPARTMENT OF ECONOMICS Spring 2018 Professor David

UNIVERSITY OF CALIFORNIA Economics 134 DEPARTMENT OF ECONOMICS Spring 2018 Professor David

UNIVERSITY OF CALIFORNIA Economics 134 DEPARTMENT OF ECONOMICS Spring 2018 Professor David Romer LECTURE 13 DOES FISCAL POLICY MATTER? MARCH 5, 2018 I. T HE E FFECTS OF F ISCAL P OLICY IN THE IS-MP-IA M ODEL A. The Short-Run Effects on Output

392 views • 27 slides
MECT Microeconometrics Blundell Lecture 3 Evaluation Methods II Richard Blundell

MECT Microeconometrics Blundell Lecture 3 Evaluation Methods II Richard Blundell

MECT Microeconometrics Blundell Lecture 3 Evaluation Methods II Richard Blundell http://www.ucl.ac.uk/uctp39a/ University College London February-March 2016 Blundell ( University College London ) MECT2 Lecture 10 February-March 2016 1 / 1

622 views • 46 slides
Background: assess the demand Y existing around a service (i.e. post office or bank) through a

Background: assess the demand Y existing around a service (i.e. post office or bank) through a

Demand models with geolocalized explanatory variables Frdrique Fve, Jean Pierre Florens (2016) Background: assess the demand Y existing around a service (i.e. post office or bank) through a linear regression model. Y is

390 views • 4 slides
Topics in Causal Inference DRP Final Presentation Omkar A. Katta April 30, 2020 Outline I.

Topics in Causal Inference DRP Final Presentation Omkar A. Katta April 30, 2020 Outline I.

Topics in Causal Inference DRP Final Presentation Omkar A. Katta April 30, 2020 Outline I. Introduction to Rubin Causal Model II. Methods and Challenges III. Frontier IV. References Introduction to Rubin Causal Model 1/12 CORRELATION IS

490 views • 14 slides
Algorithms for NLP Classification II Sachin Kumar - CMU Slides: Dan Klein UC Berkeley,

Algorithms for NLP Classification II Sachin Kumar - CMU Slides: Dan Klein UC Berkeley,

Algorithms for NLP Classification II Sachin Kumar - CMU Slides: Dan Klein UC Berkeley, Taylor Berg-Kirkpatrick CMU, Minimize Training Error? A loss function declares how costly each mistake is E.g. 0 loss for correct label, 1

879 views • 59 slides
SaFace: Towards Scenario-aware Face Recognition via Edge Computing System Zhe Zhou 1 2 Bingzhe Wu

SaFace: Towards Scenario-aware Face Recognition via Edge Computing System Zhe Zhou 1 2 Bingzhe Wu

SaFace: Towards Scenario-aware Face Recognition via Edge Computing System Zhe Zhou 1 2 Bingzhe Wu 1 Zheng Liang 1 Guangyu Sun 1 2 Chenren Xu 1 Guojie Luo 1 2 1 Peking University, China 2 Advanced Institute of Information Technology, Peking

191 views • 17 slides
Introduction to Game Theory Part II Tyler Moore Computer Science & Engineering Department,

Introduction to Game Theory Part II Tyler Moore Computer Science & Engineering Department,

Notes Introduction to Game Theory Part II Tyler Moore Computer Science & Engineering Department, SMU, Dallas, TX Lecture 17 Mixed strategies Modeling interdependent security Notes Process control system example: Nash equilibria?

299 views • 5 slides
Security Decision Making in Interdependent Organizations Presented by R. Ann Miura-Ko Joint work

Security Decision Making in Interdependent Organizations Presented by R. Ann Miura-Ko Joint work

Security Decision Making in Interdependent Organizations Presented by R. Ann Miura-Ko Joint work with Benjamin Yolken, John Mitchell and Nicholas Bambos Risk Management Security: not a technology issue alone Budgets and resources are

295 views • 17 slides
Concluding Submissions Manitoba Hydro GRA 2017-18 All Manitobans Living Green, Living Well Green

Concluding Submissions Manitoba Hydro GRA 2017-18 All Manitobans Living Green, Living Well Green

Green Action Centre Concluding Submissions Manitoba Hydro GRA 2017-18 All Manitobans Living Green, Living Well Green Action Centre recognizes our hydro system as a hugely valuable resource of relatively cheap, reliable, renewable power that

578 views • 41 slides
2016 Half year result 26 August 2016 Alison Watkins | Group Managing Director Martyn Roberts |

2016 Half year result 26 August 2016 Alison Watkins | Group Managing Director Martyn Roberts |

2016 Half year result 26 August 2016 Alison Watkins | Group Managing Director Martyn Roberts | Group Chief Financial Officer Barry OConnell | MD Australian Beverages Agenda Group Result Summary Shareholder Value Proposition Alison

489 views • 32 slides
Galaxy office building & Restructuration of hedging instruments Press call May 13 th , 2014

Galaxy office building & Restructuration of hedging instruments Press call May 13 th , 2014

Disposal of the North Galaxy office building & Restructuration of hedging instruments Press call May 13 th , 2014 0. Summary Sale of 100% of the shares of Galaxy properties, owner of the North Galaxy building , to ATP (90%) and Axa

406 views • 12 slides
Student Sustainability Projects Daniel Soto 24 July 2017 Introduction Learning Objectives

Student Sustainability Projects Daniel Soto 24 July 2017 Introduction Learning Objectives

Student Sustainability Projects Daniel Soto 24 July 2017 Introduction Learning Objectives Participants recognize elements of successful student sustainability projects Learning Objectives Participants recognize elements of successful

1.01k views • 80 slides
Government Economics Network intergenerational debate 20 minutes for the motion 20 minutes

Government Economics Network intergenerational debate 20 minutes for the motion 20 minutes

Government Economics Network intergenerational debate 20 minutes for the motion 20 minutes against the motion 5 minutes each reply 5 minutes for the chair Questions and comments from floor Vote Just what are we talking about here?

608 views • 33 slides
Updates from the Cleveland Foundation on Digital Innovation, Family Philanthropy and Charitable

Updates from the Cleveland Foundation on Digital Innovation, Family Philanthropy and Charitable

Updates from the Cleveland Foundation on Digital Innovation, Family Philanthropy and Charitable Giving Thursday, November 15, 2018 Please join us after the presentation for refreshments and networking! Building a Stronger Digital Community

471 views • 31 slides
CONNECTOGRAPHY By Parag Khanna The Global Connectivity Revolution The Infrastructural Matrix:

CONNECTOGRAPHY By Parag Khanna The Global Connectivity Revolution The Infrastructural Matrix:

CONNECTOGRAPHY By Parag Khanna The Global Connectivity Revolution The Infrastructural Matrix: Exoskeleton on the Planetary Body Skeleton System / Transportation: Highways, railways, bridges, tunnels, airports, seaports Vascular

673 views • 20 slides

More recommend