Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 TOPIC THE CHINESE WALL LATTICE Ravi Sandhu. 2 CHINESE WALL POLICY Example of a commercial security policy for confidentiality Mixture of free choice.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "1 TOPIC THE CHINESE WALL LATTICE Ravi Sandhu. 2 CHINESE WALL POLICY Example of a commercial security policy for confidentiality Mixture of free choice."— Presentation transcript:

1 1 TOPIC THE CHINESE WALL LATTICE Ravi Sandhu

2 2 CHINESE WALL POLICY Example of a commercial security policy for confidentiality Mixture of free choice (discretionary) and mandatory controls Requires some kind of dynamic labelling Introduced by Brewer-Nash in Oakland '89

3 3 CHINESE WALL POLICY COMPANY DATASETS INDIVIDUAL OBJECTS ALL OBJECTS CONFLICT OF INTEREST CLASSES A consultant can access information about at most one company in each conflict of interest class

4 4 CHINESE WALL EXAMPLE BANKS OIL COMPANIES AB XY

5 5 READ ACCESS BREWER-NASH SIMPLE SECURITY S can read O only if O is in the same company dataset as some object previously read by S (i.e., O is within the wall) or O belongs to a conflict of interest class within which S has not read any object (i.e., O is in the open)

6 6 WRITE ACCESS BREWER-NASH STAR-PROPERTY S can write O only if S can read O by the simple security rule and no object can be read which is in a different company dataset to the one for which write access is requested

7 7 REASON FOR BN STAR-PROPERTY ALICE'S WALLBOB'S WALL Bank ABank BOil Company X cooperating Trojan Horses can transfer Bank A information to Bank B objects, and vice versa, using Oil Company X objects as intermediaries

8 8 IMPLICATIONS OF BN STAR-PROPERTY Either S cannot write at all or S is limited to reading and writing one company dataset

9 9 WHY THIS IMPASSE? Failure to clearly distinguish user labels from subject labels.

10 10 USERS, PRINCIPALS, SUBJECTS USER PRINCIPAL1 PRINCIPALi PRINCIPALn PRINCIPAL1's SUBJECTS PRINCIPALi's SUBJECTS PRINCIPALn's SUBJECTS

11 11 USERS, PRINCIPALS, SUBJECTS Principals are subjects Users are not subjects Users are collections of principals (subjects)

12 12 USERS, PRINCIPALS, SUBJECTS ALICE ALICE.BANK A ALICE.OIL COMPANY X ALICE.BANK A & OIL COMPANY X ALICE.nothing USER PRINCIPALS

13 13 LATTICE INTERPRETATION dynamic creation of principals rather than dynamic labelling of subjects

14 14 CHINESE WALL EXAMPLE BANKS OIL COMPANIES AB XY

15 15 CHINESE WALL LATTICE A, - B, - -, X-, Y A, X A, Y B, XB, Y SYSHIGH SYSLOW The high water mark of a user's principal can float up so long as it remain below SYSHIGH

16 16 USERS, PRINCIPALS, SUBJECTS ALICE ALICE.BANK A ALICE.OIL COMPANY X ALICE.BANK A & OIL COMPANY X ALICE.nothing USER PRINCIPALS

17 17 USERS, PRINCIPALS, SUBJECTS JOE JOE.TOP-SECRET JOE.SECRET JOE.UNCLASSIFIED JOE.CONFIDENTIAL USER PRINCIPALS

18 18 USERS, PRINCIPALS, SUBJECTS The Bell-LaPadula star-property is applied not to Joe but rather to Joe's principals Similarly, the Brewer-Nash star-property applies not to Alice but to Alice's principals

19 19 CONCLUSION The Chinese Wall policy is just another lattice-based information flow policy To properly understand and enforce Information Security policies we must distinguish between policy applied to users, and policy applied to principals and subjects

Download ppt "1 TOPIC THE CHINESE WALL LATTICE Ravi Sandhu. 2 CHINESE WALL POLICY Example of a commercial security policy for confidentiality Mixture of free choice."

Similar presentations

George Mason University

George Mason University
ACCESS-CONTROL MODELS

ACCESS-CONTROL MODELS
On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta Center for Secure Information Systems George Mason University.

On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta Center for Secure Information Systems George Mason University.
ACCESS CONTROL: THE NEGLECTED FRONTIER Ravi Sandhu George Mason University.

ACCESS CONTROL: THE NEGLECTED FRONTIER Ravi Sandhu George Mason University.
1 TOPIC DOMAIN TYPE ENFORCEMENT Ravi Sandhu. 2 MANDATORY CONFIGURABLE POLICY Each subject has an associated domain Each object has an associated type.

1 TOPIC DOMAIN TYPE ENFORCEMENT Ravi Sandhu. 2 MANDATORY CONFIGURABLE POLICY Each subject has an associated domain Each object has an associated type.
11 World-Leading Research with Real-World Impact! A Lattice Interpretation of Group-Centric Collaboration with Expedient Insiders Khalid Zaman Bijon, Tahmina.

11 World-Leading Research with Real-World Impact! A Lattice Interpretation of Group-Centric Collaboration with Expedient Insiders Khalid Zaman Bijon, Tahmina.
Multilevel Security (MLS) Database Security and Auditing.

Multilevel Security (MLS) Database Security and Auditing.
Lecture 8 Access Control (cont)

Lecture 8 Access Control (cont)
1 Access Control Models Prof. Ravi Sandhu Executive Director and Endowed Chair January 25, 2013 & February 1, 2013

1 Access Control Models Prof. Ravi Sandhu Executive Director and Endowed Chair January 25, 2013 & February 1, 2013
1 cs691 chow Hybrid Policies CS691 – Chapter 7 of Matt Bishop.

1 cs691 chow Hybrid Policies CS691 – Chapter 7 of Matt Bishop.
Access Control Methodologies

Access Control Methodologies
1 COVERT CHANNELS Ravi Sandhu. 2 COVERT CHANNELS A covert channel is a communication channel based on the use of system resources not normally intended.

1 COVERT CHANNELS Ravi Sandhu. 2 COVERT CHANNELS A covert channel is a communication channel based on the use of system resources not normally intended.
ITIS 3200: Introduction to Information Security and Privacy Dr. Weichao Wang.

ITIS 3200: Introduction to Information Security and Privacy Dr. Weichao Wang.
Access Control Intro, DAC and MAC System Security.

Access Control Intro, DAC and MAC System Security.
Hybrid Policies Overview Chinese Wall Model Clinical Information Systems Security Policy ORCON RBAC Introduction to Computer Security ©2004 Matt Bishop.

Hybrid Policies Overview Chinese Wall Model Clinical Information Systems Security Policy ORCON RBAC Introduction to Computer Security ©2004 Matt Bishop.
Hybrid Policies Overview Chinese Wall Model Clinical Information Systems Security Policy ORCON RBAC Introduction to Computer Security ©2004 Matt Bishop.

Hybrid Policies Overview Chinese Wall Model Clinical Information Systems Security Policy ORCON RBAC Introduction to Computer Security ©2004 Matt Bishop.
CMSC 414 Computer and Network Security Lecture 13 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 13 Jonathan Katz.
Chinese wall model in the internet Environment

Chinese wall model in the internet Environment
Verifiable Security Goals

Verifiable Security Goals
Computer Security Hybrid Policies

Computer Security Hybrid Policies

Similar presentations

Ads by Google