Fine-grained Access Control for Spatial Services...e nforcing the Need-to-Know Principle Rüdiger Gartmann con terra GmbH, Münster, Germany.

Slides:

Advertisements

Similar presentations

Aviation Security Training Module 4 Design and Conduct Exercise II 1.

Advertisements

Rüdiger Gartmann, on behalf of Andreas Wytzisk con terra GmbH, Münster, Germany Monetising SDIs... eLicensing and ePayment for Spatial Services.

Emergency Preparedness and Response

29 CFR Hazardous Waste Operations and Emergency Response (Hazwoper) Presented By: Etech Environmental & Safety Solutions, Inc.

1 Denver International Airport Ken Greene Deputy Manager of Aviation Airport Operations June 10, 2014.

Paul Hubbard Portfolio Manager, Border and Transportation Security Information Sharing: Barriers and Solutions Sept 9 Workshop Summary Presented to Armed.

Emergency Response Centre (Madhya Pradesh Pollution Control Board) Bhopal - India Ph. : / Fax : / E.mail.

Alexander Brandl ERHS 561 Emergency Response Environmental and Radiological Health Sciences.

Building Marshal General Duties Evacuation Assistance Accountability Scene Integrity NC STATE UNIVERSITY Environmental Health and Public Safety Fire Protection.

1 Exotic Disease Response Training Introduction to Movement Control.

Technician Module 2 Unit 4 Slide 1 MODULE 2 UNIT 4 Specialized Functions.

Business Continuity Check List PageOne. - Why Does Your Business Need A Continuity Checklist? Should the unexpected occur, your business will be able.

Network security policy: best practices

Security System Elion Sõber Vahur Kaar Kristof Mikael Rosenberg.

1 © Talend 2014 XACML Authorization Training Slides 2014 Jan Bernhardt Zsolt Beothy-Elo

Hazardous Waste and Emergency Response

Firefighter III Introduction Mod A Identify the Firefighter III’s role as a member of the organization. (4-2.1) The role of a firefighter III.

Module 3 Develop the Plan Planning for Emergencies – For Small Business –

Chapter 13 Security Permission granted to reproduce for educational use only.© Goodheart-Willcox Co., Inc. Objectives State the major responsibility.

Critical Incident Response And CIRT Board of Education Report 2006 Dale R. Rauenzahn, Executive Director, Student Support Services.

Homeland Security Advisory System protectivemeasures vulnerability responseFederal departments and agencies would implement a corresponding set of protective.

Organization and Implementation of a National Regulatory Program for the Control of Radiation Sources Staffing and Training.

National Rural Transit Assistance Program. Learning Objectives Safety Safety Security Security Emergency Preparedness Emergency Preparedness.

Switch off your Mobiles Phones or Change Profile to Silent Mode.

EDS Incident Command System Tabletop Exercise [Exercise Location] [Exercise Date] [Insert Logo Here]

Important acronyms AO = authorizing official ISO = information system owner CA = certification agent.

Risk Management Services Confined Space Entry Basics.

Page 1 of 32 DMC Incident Command System Incident Command System for Hospitals Emergency Management Department Emergency Management Leadership Task Force.

KOC General Emergency Procedure General Emergency Procedures 1. Introduction 2. Objectives 3. Procedure to Ensure Readiness 4 Classification of Emergencies.

Information Systems Security Operational Control for Information Security.

PROMOTE HEALTH AND SAFETY IN THE WORKPLACE Written and devised by John Eaton.

Role Based Access Control Update HL7 Working Group Meeting San Diego, CA - January 2007 Presented by: Suzanne Gonzales-Webb, CPhT VHA Office of Information.

Risk Management. 2 Policy and planning Key Messages Assess all likely risks, be prepared and practice. Structure the risk management process simply and.

NERT College Disaster Operations Task Force Response Plan Workshop NERT FOG Chapter 6.

Staffing and training. Objectives To understand approaches to the development of strategies and policies for staffing of a Regulatory Authority including.

Training Proposal. Firefighting and First Aid for IES RdL It is necessary to review and document all procedures to be followed in the event of a fire.

Organization and Implementation of a National Regulatory Program for the Control of Radiation Sources Inspection Part III.

Academic Year 2014 Spring Academic Year 2014 Spring.

TM/WSP 5-9 Nov Group D2- Nuclear fuel cycle, nuclear Waste - QUESTIONS / DIFFICULTIES 1. Is it reasonable for a country to build a fuel fabrication.

SEC 420 Entire Course (UOP) For more course tutorials visit  SEC 420 Week 1 Individual Assignment Responsibilities of Personal Protection.

SEC 420 Entire Course (UOP) SEC 420 Week 1 DQ 1 (UOP)  SEC 420 Week 1 Individual Assignment Responsibilities of Personal Protection Officers Paper 

Important acronyms AO = authorizing official ISO = information system owner CA = certification agent.

CPNZ Basic Training 009 – Emergency Services. Generally when the term ‘Emergency Services’ is used, people usually think of Police Fire Ambulance Each.

Module 3 Organization Overview Module 3 Organization Overview Subjects to be covered in this module include: Terminology Terminology Organizational structure.

CDM Site Induction. Welcome to the ICC. Contents CDM Who’s who Welfare Hall Access Policy Site Rules Emergency Evacuation.

Emergency Response For the Hazardous Waste Worker.

SEC 440 OUTLET The learning interface/sec440outletdotcom.

SEC 420 aid Expect Success/sec420aiddotcom FOR MORE CLASSES VISIT

Dr. Gerry Firmansyah CID Business Continuity and Disaster Recovery Planning for IT (W-IX)

SEC 420 UOP professional tutor / sec420dotcom.  SEC 420 Entire Course (UOP)  SEC 420 Week 1 DQ 1 (UOP)  SEC 420 Week 1 Individual Assignment Responsibilities.

OPRC Level 3 Spill Management Roles & Responsibilities.

PRINCIPLES OF LAW, PUBLIC SAFETY, CORRECTIONS & SECURITY Interagency Partnerships.

SEC 420 Entire Course For more classes visit SEC 420 Week 1 Individual Assignment Responsibilities of Personal Protection Officers.

CJS 250 Week 8 DQ 1 And DQ 2 Week 8 DQ 1 Security professionals have similar functions and duties as the police, but do not share the same level of authority.

Nuclear and Treaty Law Section Office of Legal Affairs

The Role of the Mission Safety Officer

Event Security Guard And Training

Fire Department Communications

SEC 420 Competitive Success-- snaptutorial.com

SEC 420 Competitive Success-- snaptutorial.com

SEC 420 Education for Service-- snaptutorial.com

SEC 420 Education for Service-- snaptutorial.com

SEC 420 Teaching Effectively-- snaptutorial.com

SEC 420 Teaching Effectively-- snaptutorial.com

Haz Mat Incident Considerations

ONR Regulatory Core Training and Competence

Health and Safety! By jack Hughes.

PLANNING A SECURE BASELINE INSTALLATION

IS-907 – Active Shooter: What You Can Do

Work Accidents in Spain

Presentation transcript:

Fine-grained Access Control for Spatial Services...e nforcing the Need-to-Know Principle Rüdiger Gartmann con terra GmbH, Münster, Germany

© con terra GmbH 2 Actors: Public Safety Scenario: Planning an Event

© con terra GmbH 3 User Groups X

© con terra GmbH 4 Planning team >Event preparation >Plan roadblocks, routes, evacuation scenarios, personnel... >Assign areas for police, firefighters, paramedics,... Control team >Event monitoring >Measuring of movements, reaction to incidents and emergencies, revision of plans,... >Management of emergency response teams >Observation of surveillance cameras, location of suspects,... Access to All Information

© con terra GmbH 5 Access to Limited Information Technical preparation >Create roadblocks, traffic control systems, barriers,... >Seal gully holes, check security measures,... Emergency response teams >Situation assessments >Taking orders >Status reports >Finding places of accident >Guidance, evacuation, protection...

© con terra GmbH 6 Access to Public Information Tourists >Plan their trips >See what‘s going on >Find friends >Post information, photos,... >Get event notifications Threats >Only access to public information

© con terra GmbH 7 Regardless of the security classification, access is only permitted if there is an actual need Planning team is allowed to see evacuation routes... Control team is allowed to use surveillance cameras... Poliecemen are allowed to report incidents... Paramedics are allowed to request ambulances... >...but only for the very event they are actually dealing with! Security Levels vs. Need-To-Know

© con terra GmbH 8 Class 1Class 2Class 3Class 4 Event A Event B Event C Event D Authorisation Decision Information is classified Information is assigned to certain tasks Users are classified Users are assigned to certain roles (responsible for certain tasks) Access is granted, only if >classification level matches and >task/role assignment matches

based on security.manager Access Control to Spatial Content

© con terra GmbH 10 Policy structure Creating Policies SubjectResourceActionObligation SubjectResourceActionObligation Planning TeamEvacuation Routes *Area of Interest, Classification = green SubjectResourceActionObligation Planning TeamPlaces to inspect *Area of Interest, Classification = green PolicemenPlaces to inspect CheckArea of Duty, Classification = yellow System is deny-biased >Everyone without explicit permissions is denied

© con terra GmbH 11 Example: Places to Inspect

Required Authorisation Capabilities

© con terra GmbH 13 Authorisation of Services Full set Authorize services in securityManager Restricted

© con terra GmbH 14 Layer Authorisation All layers Restricted list of layers Define rights

© con terra GmbH 15 Feature Authorization All features Filtered to features classified as yellow Classification = yellow

© con terra GmbH 16 Authorise Functionalities Identify result Assign permissions for operations in securityManager Identify not authorized

© con terra GmbH 17 Spatial restrictions in securityManager Spatial Restrictions Full extent Spatial restriction for Germany

Rüdiger Gartmann Thank you for your interest......and visit us in the exhibition!