1 Chapter 12: Design Principles Overview –There are principles for many kinds of design Generally, a design should consider: Balance, Rhythm, Proportion,

Slides:

Advertisements

Similar presentations

Operating System Security

Advertisements

November 1, 2004Introduction to Computer Security ©2004 Matt Bishop Slide #12-1 Chapter 12: Design Principles Overview Principles –Least Privilege –Fail-Safe.

VM: Chapter 5 Guiding Principles for Software Security.

1 Design Principles CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute April 13, 2004.

Usable Security (Part 1 – Oct. 30/07) Dr. Kirstie Hawkey Content primarily from Teaching Usable Privacy and Security: A guide for instructors (

Role Based Access Control Venkata Marella. Access Control System Access control is the ability to permit or deny the use of a particular resource by a.

Chapter 4 Chapter 4: Planning the Active Directory and Security.

April 6, 2004ECS 235Slide #1 Chapter 13: Design Principles Overview Principles –Least Privilege –Fail-Safe Defaults –Economy of Mechanism –Complete Mediation.

Design Principles Overview Principles Least Privilege Fail-Safe Defaults Economy of Mechanism Complete Mediation Open Design Separation of Privilege Least.

Chapter 1  Introduction 1 Overview  What is a secure computer system?  Concerns of a secure system o Data: Privacy, Integrity, Availability o Users:

Security in By: Abdulelah Algosaibi Supervised by: Prof. Michael Rothstein Summer II 2010: CS 6/79995 Operating System Security.

CS-550 (M.Soneru): Protection and Security - 1 [SaS] 1 Protection and Security.

(Breather)‏ Principles of Secure Design by Matt Bishop (augmented by Michael Rothstein)‏

1 Building with Assurance CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute May 10, 2004.

CMSC 414 Computer and Network Security Lecture 9 Jonathan Katz.

April 1, 2004ECS 235Slide #1 Chapter 1: Introduction Components of computer security Threats Policies and mechanisms The role of trust Assurance Operational.

1 cs691 chow C. Edward Chow Design Principles for Secure Mechanisms CS591 – Chapter 5.4 Trusted OS Design CS691 – Chapter 13 of Matt Bishop.

11 SHARING FILE SYSTEM RESOURCES Chapter 9. Chapter 9: SHARING FILE SYSTEM RESOURCES2 CHAPTER OVERVIEW  Create and manage file system shares and work.

Lecture 10: Security Design Principles CS 436/636/736 Spring 2012 Nitesh Saxena.

11 MANAGING USERS AND GROUPS Chapter 13. Chapter 13: MANAGING USERS AND GROUPS2 OVERVIEW  Configure and manage user accounts  Manage user account properties.

G Robert Grimm New York University Protection and the Control of Information Sharing in Multics.

C. Edward Chow Presented by Mousa Alhazzazi C. Edward Chow Presented by Mousa Alhazzazi Design Principles for Secure.

Lecture slides prepared for “Computer Security: Principles and Practice”, 2/e, by William Stallings and Lawrie Brown, Chapter 4 “Overview”.

ADVANCED LINUX SECURITY. Abstract : Using mandatory access control greatly increases the security of an operating system. SELinux, which is an implementation.

11 SHARING FILE SYSTEM RESOURCES Chapter 9. Chapter 9: SHARING FILE SYSTEM RESOURCES2 CHAPTER OVERVIEW Create and manage file system shares and work with.

Lecture 18 Page 1 CS 111 Online Design Principles for Secure Systems Economy Complete mediation Open design Separation of privileges Least privilege Least.

Systems Security & Audit Operating Systems security.

Security Security is a measure of the system’s ability to protect data and information from unauthorized access while still providing access to people.

CMSC 414 Computer (and Network) Security Lecture 14 Jonathan Katz.

SAMANVITHA RAMAYANAM 18 TH FEBRUARY 2010 CPE 691 LAYERED APPLICATION.

The Protection of Information in Computer Systems Part I. Basic Principles of Information Protection Jerome Saltzer & Michael Schroeder Presented by Bert.

Software Security and Security Engineering (Part 2)

10 Reasons to Choose the Yii Framework. The development of Yii framework began on January 1, 2008.Yii framework It is an open source application that.

Chapter 9: SHARING FILE SYSTEM RESOURCES1 CHAPTER OVERVIEW  Create and manage file system shares and work with share permissions.  Use NTFS file system.

Chapter 1 Overview The NIST Computer Security Handbook defines the term Computer Security as:

CMSC 414 Computer and Network Security Lecture 10 Jonathan Katz.

Computer Security: Principles and Practice First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Chapter 4 – Access Control.

Access Control. What is Access Control? The ability to allow only authorized users, programs or processes system or resource access The ability to disallow.

14.1/21 Part 5: protection and security Protection mechanisms control access to a system by limiting the types of file access permitted to users. In addition,

Lecture slides prepared for “Computer Security: Principles and Practice”, 3/e, by William Stallings and Lawrie Brown, Chapter 1 “Overview”. © 2016 Pearson.

(Breather)‏ Principles of Secure Design by Matt Bishop (augmented by Michael Rothstein)‏

Privilege Management Chapter 22.

Design Principles and Common Security Related Programming Problems

Computer Security: Principles and Practice

Fall 2008CS 334: Computer SecuritySlide #1 Design Principles Thanks to Matt Bishop.

June 1, 2004Computer Security: Art and Science © Matt Bishop Slide #13-1 Chapter 13: Design Principles Overview Principles –Least Privilege –Fail-Safe.

LINUX Presented By Parvathy Subramanian. April 23, 2008LINUX, By Parvathy Subramanian2 Agenda ► Introduction ► Standard design for security systems ►

June 1, 2004© Matt Bishop [Changed by Hamid R. Shahriari] Slide #13-1 Chapter 13: Design Principles Overview Principles –Least Privilege –Fail-Safe.

Slide #13-1 Design Principles CS461/ECE422 Computer Security I Fall 2008 Based on slides provided by Matt Bishop for use with Computer Security: Art and.

Software Security II Karl Lieberherr. What is Security Enforcing a policy that describes rules for accessing resources. Policy may be explicit or implicit.

1 Saltzer [1974] and later Saltzer and Schroeder [1975] list the following principles of the design of secure protection systems, which are still valid:

PREPARED BY: MS. ANGELA R.ICO & MS. AILEEN E. QUITNO (MSE-COE) COURSE TITLE: OPERATING SYSTEM PROF. GISELA MAY A. ALBANO PREPARED BY: MS. ANGELA R.ICO.

Security Principles.

1 Design Principles CS461 / ECE422 Spring Overview Simplicity  Less to go wrong  Fewer possible inconsistencies  Easy to understand Restriction.

Chapter 29: Program Security Dr. Wayne Summers Department of Computer Science Columbus State University

1.3 Operating system services An operating system provide services to programs and to the users of the program. It provides an environment for the execution.

Access Control Model SAM-5.

Chapter 14: System Protection

Chapter3 Security Strategies.

Review What is an object? What is a class?

Chapter 13: Design Principles

Chapter 1: Introduction

Chapter 13: Design Principles

Design Principles and Security related problem

Computer Security: Art and Science, 2nd Edition

Chapter 29: Program Security

Chapter 13: Design Principles

Design Principles Thanks to Matt Bishop 2006 CS 395: Computer Security.

Presentation transcript:

1 Chapter 12: Design Principles Overview –There are principles for many kinds of design Generally, a design should consider: Balance, Rhythm, Proportion, Dominance, Unity –There are principles for the design and implementation of security mechanisms Principles –Least Privilege –Fail-Safe Defaults –Economy of Mechanism –Complete Mediation –Open Design –Psychological Acceptability

2 Overview Simplicity –Less to go wrong –Fewer possible inconsistencies Policy conflict –Easy to understand –Fewer data check during transmission among components Assumptions of input/output data may lead to serious security problems Restriction –Minimize access –Inhibit communication Hiding not only the contents, but also the fact that the communication exists

3 Least Privilege A subject should be given only those privileges necessary to complete its task –Restrict the privilege grant –The function of the subject (what she/he need to do), instead of its identity (who she/he is), controls the assignment of rights –Rights added as needed, discarded after use –Minimal protection domain

4 Fail-Safe Defaults Restrict how privileges are initialized Default action is to deny access If action fails, system should be restored to the state before action began –Either none or all –No partial transaction allowed

5 Economy of Mechanism Simplify the design and implementation Keep it as simple as possible –KISS Principle (Keep it simple, si__y) Simpler means less can go wrong –And when errors occur, they are easier to understand and fix –Weaker assumptions need to be made Interfaces and interactions –Assumptions of input and output Suppose to be a small file, but who knows –Interactions with other entities Bugs in windows

6 Complete Mediation Restrict caching of information Check every access Usually done once, on first action –UNIX: access checked on open, not checked thereafter If permissions change, users may get unauthorized access Tradeoff with efficiency –DNS and web content

7 Open Design Security should not depend on secrecy of design or implementation –Popularly misunderstood to mean that source code should be public. Not necessarily –Secrecy can enhance the security, but if the design becomes exposed, the security of the mechanism cannot be affected –Does not apply to information such as passwords or cryptographic keys –People can figure out your system design CPU simulator; Trash digger; stealing;

8 Psychological Acceptability Security mechanisms should not add to difficulty of accessing resource –Hide complexity introduced by security mechanisms –Ease of installation, configuration, use –Human factors critical here Zero interaction authentication

9 Key Points Principles of secure design underlie all security-related mechanisms Require: –Good understanding of goal of mechanism and environment in which it is to be used –Careful analysis and design –Careful implementation