A Logic Specification for Usage Control Xinwen Zhang, Jaehong Park Francesco Parisi-Presicce, Ravi Sandhu George Mason University SACMAT 2004.

Slides:



Advertisements
Similar presentations
TWO STEP EQUATIONS 1. SOLVE FOR X 2. DO THE ADDITION STEP FIRST
Advertisements

Kapitel 10. Copyright © Houghton Mifflin Company. All rights reserved.10 | 2 1. The passive voice.
Feichter_DPG-SYKL03_Bild-01. Feichter_DPG-SYKL03_Bild-02.
Cyber-Identity, Authority and Trust in an Uncertain World
1 Formal Model and Analysis of Usage Control Dissertation defense Student: Xinwen Zhang Director: Ravi S. Sandhu Co-director: Francesco Parisi-Presicce.
Cyber-Identity, Authority and Trust in an Uncertain World
Cyber-Identity, Authority and Trust in an Uncertain World Prof. Ravi Sandhu Laboratory for Information Security Technology George Mason University
© Ravi Sandhu Cyber-Identity, Authority and Trust in an Uncertain World Prof. Ravi Sandhu Laboratory for Information Security Technology.
Attribute Mutability in Usage Control July 26, 2004, IFIP WG11.3 Jaehong Park, University of Maryland University College Xinwen Zhang, George Mason University.
INFS 767 Fall 2003 The RBAC96 Model Prof. Ravi Sandhu George Mason University.
1 Safety Analysis of Usage Control (UCON) Authorization Model Xinwen Zhang, Ravi Sandhu, and Francesco Parisi-Presicce George Mason University AsiaCCS.
Towards Usage Control Models: Beyond Traditional Access Control 7 th SACMAT, June 3, 2002 Jaehong Park and Ravi Sandhu Laboratory for Information Security.
Institute for Cyber Security
A Usage-based Authorization Framework for Collaborative Computing Systems Xinwen Zhang George Mason University Masayuki Nakae NEC Corporation Michael J.
Usage Control: UCON Ravi Sandhu. © Ravi Sandhu2 Problem Statement Traditional access control models are not adequate for todays distributed, network-
Logical Model and Specification of Usage Control Xinwen Zhang, Jaehong Park Francesco Parisi-Presicce, Ravi Sandhu George Mason University.
ACCESS CONTROL: THE NEGLECTED FRONTIER Ravi Sandhu George Mason University.
Future Directions in Role-Based Access Control Models Ravi Sandhu Co-Founder and Chief Scientist SingleSignOn.Net & Professor of Information Technology.
Towards A Times-based Usage Control Model Baoxian Zhao 1, Ravi Sandhu 2, Xinwen Zhang 3, and Xiaolin Qin 4 1 George Mason University, Fairfax, VA, USA.
Flexible access control policy specification with constraint logic programming Steve Barker, Peter J. Stuckey Presenter: Vijayant Dhankhar.
© 2008 Pearson Addison Wesley. All rights reserved Chapter Seven Costs.
Copyright © 2003 Pearson Education, Inc. Slide 1 Computer Systems Organization & Architecture Chapters 8-12 John D. Carpinelli.
Chapter 1 The Study of Body Function Image PowerPoint
1 Copyright © 2013 Elsevier Inc. All rights reserved. Chapter 1 Embedded Computing.
Copyright © 2011, Elsevier Inc. All rights reserved. Chapter 6 Author: Julia Richards and R. Scott Hawley.
Author: Julia Richards and R. Scott Hawley
1 Copyright © 2013 Elsevier Inc. All rights reserved. Appendix 01.
Properties Use, share, or modify this drill on mathematic properties. There is too much material for a single class, so you’ll have to select for your.
UNITED NATIONS Shipment Details Report – January 2006.
1 RA I Sub-Regional Training Seminar on CLIMAT&CLIMAT TEMP Reporting Casablanca, Morocco, 20 – 22 December 2005 Status of observing programmes in RA I.
Jeopardy Q 1 Q 6 Q 11 Q 16 Q 21 Q 2 Q 7 Q 12 Q 17 Q 22 Q 3 Q 8 Q 13
Jeopardy Q 1 Q 6 Q 11 Q 16 Q 21 Q 2 Q 7 Q 12 Q 17 Q 22 Q 3 Q 8 Q 13
Title Subtitle.
Properties of Real Numbers CommutativeAssociativeDistributive Identity + × Inverse + ×
Arithmetic and Geometric Means
Exit a Customer Chapter 8. Exit a Customer 8-2 Objectives Perform exit summary process consisting of the following steps: Review service records Close.
FACTORING ax2 + bx + c Think “unfoil” Work down, Show all steps.
Year 6 mental test 5 second questions
Year 6 mental test 10 second questions
REVIEW: Arthropod ID. 1. Name the subphylum. 2. Name the subphylum. 3. Name the order.
ABC Technology Project
2 |SharePoint Saturday New York City
Green Eggs and Ham.
VOORBLAD.
Name Convolutional codes Tomashevich Victor. Name- 2 - Introduction Convolutional codes map information to code bits sequentially by convolving a sequence.
Factor P 16 8(8-5ab) 4(d² + 4) 3rs(2r – s) 15cd(1 + 2cd) 8(4a² + 3b²)
Basel-ICU-Journal Challenge18/20/ Basel-ICU-Journal Challenge8/20/2014.
1..
CONTROL VISION Set-up. Step 1 Step 2 Step 3 Step 5 Step 4.
© 2012 National Heart Foundation of Australia. Slide 2.
Understanding Generalist Practice, 5e, Kirst-Ashman/Hull
DB analyzer utility An overview 1. DB Analyzer An application used to track discrepancies and other reports in Sanchay Post Constantly updated by SDC.
Model and Relationships 6 M 1 M M M M M M M M M M M M M M M M
25 seconds left…...
Slippery Slope
Januar MDMDFSSMDMDFSSS
Analyzing Genes and Genomes
We will resume in: 25 Minutes.
©Brooks/Cole, 2001 Chapter 12 Derived Types-- Enumerated, Structure and Union.
Intracellular Compartments and Transport
PSSA Preparation.
Essential Cell Biology
Energy Generation in Mitochondria and Chlorplasts
UCON M ODEL Huỳnh Châu Duy. OUTLINE UCON MODEL What? What for? When? Why? CORE MODELS 16 basic models Example COMPARISON Traditional access.
1 Usage Control (UCON) or ABAC on Steroids Prof. Ravi Sandhu Executive Director and Endowed Chair February 26, 2016
Attribute-Based Access Control (ABAC)
Presentation transcript:

A Logic Specification for Usage Control Xinwen Zhang, Jaehong Park Francesco Parisi-Presicce, Ravi Sandhu George Mason University SACMAT 2004

2 Outline Introduction of UCON Temporal Logic of Action (TLA) Logic Model for UCON with TLA Specification of Authorization Core Models Obligations and Conditions Conclusions and Future Work

3 UCON A unified framework for next generation access control A comprehensive model to represent the underlying mechanism of existing access control models and policies. Try to extend the limits of traditional access control models: –Authorization only – No obligation or condition based control –Identity based only – No attributes based support –Decision is made before access – No ongoing control –No consumable rights - No mutable attributes –Rights are pre-defined and granted to subjects

4 UCON UCON provides a general model beyond DRM and Trust management: –Digital Rights Management (DRM) Mainly focus on intellectual property rights protection with architecture and mechanism level studies Lack of access control model –Trust Management Authorization for strangers access based on credentials Lack of an abstract model for attribute-based authorization

5 OM-AM Layered Approach Model examples: Access Matrix, Lattice-based model, Role-base access control model

6 UCON Model Basic components: –Subjects and attributes –Objects and attributes –Rights Logically, UCON is a mapping from a set of {subject/object attributes, right} to {true, false} Usage control decisions are based on authorization, obligations, and conditions. Referred as UCON ABC model

7 Continuity and Mutability of UCON A single usage process has three phases –before access, during usage, and access Continuity: control decision can be checked before or during access Mutability: attribute updates can be performed before, during or after access –Pre-update, on-update, and post-update

8 Core Authorization Models According to the authorization control attribute update points, we have seven core authorization models: –preA 0 : control decision is determined before access, and there is no attribute update. –preA 1 : control decision and and attribute update before access. –preA 3 : control decision is determined before access, and attribute update after access. –onA 0 : control decision is checked and determined during usage, and there is no attribute update. –onA 1 : control decision is checked and determined during usage, and there is attribute update before access. –onA 2 : control decision is checked and determined during usage, and there is attribute update during usage. –onA 3 : control decision is checked and determined during usage, and there is attribute update after usage. A real UCON system may be a hybrid of them.

9 Outline Introduction of UCON Temporal Logic of Action (TLA) Logic Model for UCON with TLA Specification of Authorization Core Models in UCON Obligation and Conditions Conclusions and Future Work

10 Temporal Logic of Action Basic Terms: –Variables: x, y –Values: 5, abc –Constants –A state is an assignment of values to variables Functions: nonboolean expression with variables and constants –Semantically, a function is a mapping from states to values. State Predicates: boolean expression with variables and constants –Semantically, a predicate is a mapping from states to booleans. Actions: boolean expression with variables, primed variables, and constants –Semantically, an action is a function assigning a boolean to a pair of states (s,t), where s is the old state with variables, and t is the new state with primed variables.

11 TLA Behavior: a sequence of states Semantics of an action A: Temporal operator: (always) Temporal Formula: Semantics:

12 TLA Other temporal operators: –Eventually: –Next: –Until: Past temporal operators: –Has-always-been, Once, Previous, Since

13 Outline Introduction of UCON Temporal Logic of Action (TLA) Logic Model for UCON with TLA Specification of Authorization Core Models in UCON Obligation and Conditions Conclusions and Future Work

14 Logical Model of UCON: States and Attributes A state of UCON is an assignment of values to attributes: –Subject attributes: role, security clearance, credit amount, etc. –Object attributes: type, directory, etc. –System attributes: time, location, etc. –A special system attribute: state(s,o,r)={initial, requesting, denied, accessing, revoked, end} To specify the status of a single access process (s,o,r) Authorization actions defined to change this state.

15 Logical Model of UCON: Predicates Predicates: boolean expression built from subject attributes, object attributes, and system attributes. –Mapping a state to True/False –Unary predicates: Alice.credit > $1000, file1.classification = secure –Binary predicates: Dominate(Alice.clearance, file1.classification) in((Bob, read), file2.ACL) –Ternary predicate permit(s,o,r): Specify usage control decisions True if a s is allowed to access o with r.

16 Logic Model of UCON: Actions Two types of actions: –Actions performed by a subject –Actions performed by the system state(s,o,r) transition with actions:

17 Logic Model of UCON

18 Logical Model of UCON Semantics:

19 Outline Introduction of UCON Temporal Logic of Action (TLA) Logic Model for UCON with TLA Specification of Authorization Core Models Obligation and Conditions Conclusions and Future Work

20 Specification of Core Models preA 0 : Example 2: BLP model Example 3: DAC with ACL

21 Specification of Core Models preA 1 : Example 4: DRM pay-per-use application

22 Specification of Core Models preA 3 :

23 Specification of Core Models onA 0 : Example 6:

24 Specification of Core Models onA 1 : onA 2 : onA 3 :

25 Specification: an Example Example 7: Resource-constrained access control –Limited number (10) of ongoing accessing for a single object –Object attribute: –When 11 th subject requesting new access, one ongoing accessing will be revoked. a. the earliest usage will be revoked. Subject attribute: startTime

26 Specification: an Example b. revocation by longest idle usage Subject attributes: state, idleTime

27 Specification: an Example c. revocation by longest total usage Subject attribute: usageTime

28 Outline Introduction of UCON Temporal Logic of Action (TLA) Logic Model for UCON with TLA Specification of Authorization Core Models Obligation and Conditions Conclusions and Future Work

29 Obligations Two types of obligations in UCON: –pre-obligations, which must have been performed before access. –ongoing-obligations, which must be performed during usage.

30 Obligations Example: click license agreement before making order:

31 Conditions Conditions are environment restrictions before or during usage. In UCON, a condition is a predicate built from system attributes, such as time and location. Example:

32 Outline Introduction of UCON Temporal Logic of Action (TLA) Logic Model for UCON with TLA Specification of Authorization Core Models Obligation and Conditions Conclusions and Future Work

33 Conclusions A logical model for UCON with: –States with: subject attributes and values Object attributes and values System attribute and values –Predicates: Authorization predicates built from subject and object attributes Condition predicates built from system attributes –Actions: Attribute update actions Usage control actions Obligation actions –Temporal formulas of usage control policies First-order logic specification of the UCON models with new features of: –Mutability –Continuality

34 Future Work UCON: –Enrich UCON model, such as constraints, delegations –Administrative UCON model Attribute management Administrative policies –Expressive power and safety analysis for UCON –Concurrency of UCON Development of architecture and mechanism for UCON system –DRM technologies –Trusted computing technologies

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.