11 World-Leading Research with Real-World Impact! Group-Centric Secure Information Sharing: A Lattice Interpretation Institute for Cyber Security Ravi.

Slides:



Advertisements
Similar presentations
Towards Secure Information Sharing Models for Community Cyber Security Ravi Sandhu, Ram Krishnan and Gregory B. White Institute for Cyber Security University.
Advertisements

Stale-Safe Security Properties for Secure Information Sharing Ram Krishnan (GMU) Jianwei Niu (UT San Antonio) Ravi Sandhu (UT San Antonio) William Winsborough.
1 New Trends and Challenges in Computer Network Security Ravi Sandhu Executive Director and Endowed Professor September 2010
© 2005 Ravi Sandhu Role Usage and Activation Hierarchies (best viewed in slide show mode) Ravi Sandhu Laboratory for Information Security.
11 World-Leading Research with Real-World Impact! A Lattice Interpretation of Group-Centric Collaboration with Expedient Insiders Khalid Zaman Bijon, Tahmina.
1 The Future of Cyber Security Prof. Ravi Sandhu Executive Director and Endowed Chair © Ravi Sandhu.
Ram Krishnan PhD Candidate Dissertation Directors: Dr. Ravi Sandhu and Dr. Daniel Menascé Group-Centric Secure Information Sharing Models Dissertation.
1 Access Control Models Prof. Ravi Sandhu Executive Director and Endowed Chair January 25, 2013 & February 1, 2013
1 The Challenge of Data and Application Security and Privacy (DASPY): Are We Up to It? Ravi Sandhu Executive Director and Endowed Professor February 21,
1 The Data and Application Security and Privacy (DASPY) Challenge Prof. Ravi Sandhu Executive Director and Endowed Chair 11/11/11
1 The Science, Engineering, and Business of Cyber Security Prof. Ravi Sandhu Executive Director, Institute for Cyber Security Lutcher Brown Endowed Chair.
1 A Unified Attribute-Based Access Control Model Covering DAC, MAC and RBAC Prof. Ravi Sandhu Executive Director and Endowed Chair DBSEC July 11, 2012.
Attribute-Based Access Control Models and Beyond
1 Plenary Panel on Cloud Security and Privacy: What is new and What needs to be done? Ravi Sandhu Executive Director and Endowed Professor December 2010.
11 World-Leading Research with Real-World Impact! RT-Based Administrative Models for Community Cyber Security Information Sharing Ravi Sandhu, Khalid Zaman.
1 Privacy and Access Control: How are These Two Concepts Related? Prof. Ravi Sandhu Executive Director and Endowed Chair SACMAT Panel June 3, 2015
11 World-Leading Research with Real-World Impact! Role and Attribute Based Collaborative Administration of Intra-Tenant Cloud IaaS (Invited Paper) Xin.
Summary For Chapter 8 Student: Zhibo Wang Professor: Yanqing Zhang.
11 World-Leading Research with Real-World Impact! A Formal Model for Isolation Management in Cloud Infrastructure-as-a-Service Khalid Zaman Bijon, Ram.
1 Cyber Security Grand Challenges and Prognosis Prof. Ravi Sandhu Executive Director and Endowed Chair
1 The Future of Cyber Security Prof. Ravi Sandhu Executive Director and Endowed Chair © Ravi Sandhu.
1 The Challenge of Data and Application Security and Privacy (DASPY) Ravi Sandhu Executive Director and Endowed Professor March 23, 2011
11 World-Leading Research with Real-World Impact! A Group-Centric Model for Collaboration with Expedient Insiders in Multilevel Systems Khalid Zaman Bijon,
INSTITUTE FOR CYBER SECURITY 1 Cyber Security: Past, Present and Future Prof. Ravi Sandhu Executive Director and Endowed Chair Institute for Cyber Security.
UTSA Amy(Yun) Zhang, Ram Krishnan, Ravi Sandhu Institute for Cyber Security University of Texas at San Antonio San Antonio, TX Nov 03, 2014 Presented.
1 Institute for Cyber Security Prof. Ravi Sandhu Executive Director and Endowed Chair February 4, 2015
INSTITUTE FOR CYBER SECURITY © Ravi Sandhu11 Group-Centric Information Sharing Ravi Sandhu Executive Director and Endowed Professor Institute for Cyber.
11 World-Leading Research with Real-World Impact! Towards Provenance and Risk-Awareness in Social Computing Yuan Cheng, Dang Nguyen, Khalid Bijon, Ram.
1 Big Data Applications in Cloud and Cyber Security Prof. Ravi Sandhu Executive Director and Endowed Professor UTSA COB Symposium on Big Data, Big Challenges.
1 Grand Challenges in Authorization Systems Prof. Ravi Sandhu Executive Director and Endowed Chair November 14, 2011
1 The Future of Cyber Security Prof. Ravi Sandhu Executive Director and Endowed Chair © Ravi Sandhu.
1 Virtualization Prof. Ravi Sandhu Executive Director and Endowed Chair February 7, © Ravi Sandhu World-Leading.
1 Group-Centric Models for Secure and Agile Information Sharing Ravi Sandhu Executive Director and Endowed Professor October 2010
1 Cloud Computing and Security Prof. Ravi Sandhu Executive Director and Endowed Chair April 19, © Ravi Sandhu.
INSTITUTE FOR CYBER SECURITY A Hybrid Enforcement Model for Group-Centric Secure Information Sharing (g-SIS) Co-authored with Ram Krishnan, PhD Candidate,
1 Group-Centric Models for Secure Information Sharing Prof. Ravi Sandhu Executive Director and Endowed Chair March 30, 2012
1 Group-Centric Models for Secure and Agile Information Sharing Ravi Sandhu Executive Director and Endowed Professor April 2010
INSTITUTE FOR CYBER SECURITY 1 Application-Centric Security Models Prof. Ravi Sandhu Executive Director and Endowed Chair Institute for Cyber Security.
Application-Centric Security Models
1 Attribute-Based Access Control Models and Beyond Prof. Ravi Sandhu Executive Director, Institute for Cyber Security Lutcher Brown Endowed Chair in Cyber.
A Conceptual Framework for Group-Centric Secure Information Sharing Ram Krishnan (George Mason University) Ravi Sandhu, Jianwei Niu, William Winsborough.
1 Panel on Data Usage Management: Technology or Regulation? Prof. Ravi Sandhu Executive Director and Endowed Chair DUMA 2013 May 23, 2013
1 Security and Privacy in Human-Centric Computing and Big Data Management Prof. Ravi Sandhu Executive Director and Endowed Chair CODASPY 2013 February.
1 Open Discussion PSOSM 2012 Prof. Ravi Sandhu Executive Director and Endowed Chair © Ravi Sandhu.
1 Challenges of Cyber Security Education at the Graduate Level Ravi Sandhu Executive Director and Endowed Professor July 27, 2011
INSTITUTE FOR CYBER SECURITY 1 Enforcement Architecture and Implementation Model for Group-Centric Information Sharing © Ravi Sandhu Ram Krishnan (George.
Ram Krishnan (George Mason University) Ravi Sandhu, Jianwei Niu, William Winsborough (University of Texas at San Antonio) Foundations for Group-Centric.
Extended ReBAC Administrative Models with Cascading Revocation and Provenance Support Yuan Cheng 1 , 2, Khalid Bijon 2, and Ravi Sandhu 1 Institute for.
1 Secure Cloud Computing: A Research Perspective Prof. Ravi Sandhu Executive Director and Endowed Chair Texas Fresh Air Big Data and Data Analytics Conference.
INSTITUTE FOR CYBER SECURITY 1 Purpose-Centric Secure Information Sharing Ravi Sandhu Executive Director and Endowed Professor Institute for Cyber Security.
Institute for Cyber Security
Institute for Cyber Security
Past, Present and Future
Institute for Cyber Security
An Access Control Perspective on the Science of Security
Attribute-Based Access Control: Insights and Challenges
On the Value of Access Control Models
Institute for Cyber Security
Institute for Cyber Security
Institute for Cyber Security
Cyber Security Research: Applied and Basic Combined*
Security and Privacy in the Age of the Internet of Things:
Intersection of Data, Policy and Privacy
Attribute-Based Access Control: Insights and Challenges
Executive Director and Endowed Chair
Assured Information Sharing
Institute for Cyber Security
Access Control Evolution and Prospects
World-Leading Research with Real-World Impact!
Access Control Evolution and Prospects
Presentation transcript:

11 World-Leading Research with Real-World Impact! Group-Centric Secure Information Sharing: A Lattice Interpretation Institute for Cyber Security Ravi Sandhu Executive Director and Endowed Professor September 14, © Ravi Sandhu

2 Secure Information Sharing (SIS) Containment challenge  Client containment  Absolute assurance infeasible (e.g., analog hole)  Appropriate assurance achievable  Server containment  Typically higher assurance than client © Ravi Sandhu World-Leading Research with Real-World Impact! Goal: Share but protect Policy challenge  How to construct meaningful, usable, agile SIS policy  How to develop an intertwined information and security model Object Centric  Dissemination oriented Group Centric  Collaboration oriented

3 Group-Centric Collaboration © Ravi Sandhu World-Leading Research with Real-World Impact! Collaboration Group Individual Experts Organization 2 Organization 1 Organization n Organization 3

4 Group-Centric Formal Models © Ravi Sandhu World-Leading Research with Real-World Impact!  Operational aspects  Group operation semantics o Add, Join, Leave, Remove, Export, Merge, etc o Multicast group is one example  Object model o Read-only o Read-Write (no versioning vs versioning)  User-subject model o Read-only vs read-write  Policy specification  Administrative aspects  Authorization to create group, user join/leave, object add/remove, object export/merge etc. Users Objects Group Authz (u,o,r)? join leave add remove R. Krishnan, J. Niu, R. Sandhu and W. Winsborough, Group-Centric Secure Information- Sharing Models for Isolated Groups, ACM TISSEC, Vol. 14, No. 3, Nov. 2011, 29 pages.

5 Group-Centric Collaboration © Ravi Sandhu World-Leading Research with Real-World Impact! Collaboration Group Individual Experts Organization 2 Organization 1 Organization n Organization 3

6 Group-Centric Collaboration © Ravi Sandhu World-Leading Research with Real-World Impact! Collaboration Group Individual Experts Organization 1 True Insiders Expedient Insiders

7 Collaboration with Expedient Insiders in Traditional MAC (or LBAC) © Ravi Sandhu World-Leading Research with Real-World Impact! Unclassified Classified Top Secret Secret Individual Experts Sharing more information than necessary

8 Collaboration by Adding a New Security Category in Traditional MAC (or LBAC) © Ravi Sandhu World-Leading Research with Real-World Impact! Adding new security category C Existing LatticeModified Lattice after adding new security category C Sharing more information than necessary

9 Group Centric Collaboration with Expedient Insiders (GEI) © Ravi Sandhu World-Leading Research with Real-World Impact! Collaboration Group Individual Experts Organization

10 Lattice with Collaborative Compartments (LCC) © Ravi Sandhu World-Leading Research with Real-World Impact! Sharing just right information sharing SysHigh SysLow Adding new Collaboration category cc Existing Lattice SysHigh SysLow Modified Lattice after adding collaboration category cc Theorem. GEI is formally equivalent to LCC CONCLUSION Traditional MAC (or LBAC) can support collaboration groups NOT with traditional categories BUT with collaboration categories

11 Publications Include © Ravi Sandhu World-Leading Research with Real-World Impact!  Khalid Bijon, Tahmina Ahmed, Ravi Sandhu and Ram Krishnan, “A Lattice Interpretation of Group-Centric Collaboration with Expedient Insiders.” In Proceedings 8th IEEE International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom), Pittsburgh, Pennsylvania, October 14-17, 2012, 10 pages.  Khalid Bijon, Ravi Sandhu and Ram Krishnan, “A Group-Centric Model for Collaboration with Expedient Insiders in Multilevel Systems.” In Proceedings IEEE International Symposium on Security in Collaboration Technologies and Systems (SECOTS 2012), Denver, CO, May 24 th, 2012, 8 pages.  Ram Krishnan, Jianwei Niu, Ravi Sandhu and William H. Winsborough, “Group-Centric Secure Information-Sharing Models for Isolated Groups.” ACM Transactions on Information and System Security, Volume 14, Number 3, November 2011, Article 23, 29 pages.  Ravi Sandhu, Khalid Zaman Bijon, Xin Jin and Ram Krishnan, “RT-Based Administrative Models for Community Cyber Security Information Sharing.” In Proceedings of the 6 th IEEE International Workshop on Trusted Collaboration (TrustCol 2011), Orlando, Florida, October 15, 2011, 6 pages.  Ravi Sandhu, Ram Krishnan and Gregory White, “Towards Secure Information Sharing Models for Community Cyber Security.” In Proceedings 6 th IEEE International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom), Chicago, Illinois, October 9- 12, 2010, 6 pages.  Jaehong Park, Yuan Cheng and Ravi Sandhu, “Towards A Framework for Cyber Social Status Based Trusted Open Collaboration.” In Proc. of the 5th IEEE International Workshop on Trusted Collaboration (TrustCol 2010), Chicago, Illinois, Oct. 9, 2010, 8 pages.  Ravi Sandhu, Ram Krishnan, Jianwei Niu and William Winsborough, “Group-Centric Models for Secure and Agile Information Sharing.” In Proceedings 5th International Conference, on Mathematical Methods, Models, and Architectures for Computer Network Security, MMM-ACNS 2010, St. Petersburg, Russia, September 8-10, 2010, pages Published as Springer Lecture Notes in Computer Science Vol. 6258, Computer Network Security (Igor Kotenko and Victor Skormin, editors),  Ram Krishnan, Ravi Sandhu, Jianwei Niu and William Winsborough, “Towards a Framework for Group-Centric Secure Collaboration.” In Proc. 5th IEEE International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom), Crystal City, Virginia, November 11-14, 2009, pages  Ram Krishnan and Ravi Sandhu, “A Hybrid Enforcement Model for Group-Centric Secure Information Sharing.” Proc. IEEE International Conference on Computational Science and Engineering (CSE-09), Vancouver, Canada, August 29-31, 2009, pages  Ram Krishnan, Ravi Sandhu, Jianwei Niu and William Winsborough, “Formal Models for Group-Centric Secure Information Sharing.” In Proc. 14 th ACM Symposium on Access Control Models and Technologies (SACMAT), Stresa, Italy, June 3-5, 2009, pages  Ram Krishnan and Ravi Sandhu, “Enforcement Architecture and Implementation Model for Group-Centric Information Sharing.” In Proceedings of the 1 st IEEE International Workshop on Security and Communication Networks (IWSCN), Trondheim, Norway, May 20-22, 2009, 8 pages.  Ram Krishnan, Ravi Sandhu, Jianwei Niu and William Winsborough, “A Conceptual Framework for Group-Centric Secure Information Sharing.” Proc. 4th ACM Symposium on Information, Computer and Communications Security (AsiaCCS), Sydney, Australia, March 10-12, 2009, pages  Ram Krishnan, Jianwei Niu, Ravi Sandhu and William Winsborough, “Stale-Safe Security Properties for Group-Based Secure Information Sharing.” Proc. 6th ACM-CCS Workshop on Formal Methods in Security Engineering (FMSE), Alexandria, Virginia, October 27, 2008, pages

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.