Presentation is loading. Please wait.

Presentation is loading. Please wait.

On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta Center for Secure Information Systems George Mason University.

Published byRyan Beach Modified over 11 years ago

Similar presentations

Presentation on theme: "On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta Center for Secure Information Systems George Mason University."— Presentation transcript:

1 On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta Center for Secure Information Systems George Mason University

2 Outline Introduction / Motivation Transformation Model Example Expressive Power Conclusion

3 NMT Can enforce lots of diverse policies Has simple implementation Cannot adequately express the document release example (Sandhu & Suri, Oakland 92)

4 Document Release Example A scientist prepares a document and can release it only after getting approval from a patent-officer.

5 Transformation Model (TRM) Protection state in TRM is viewed in terms of the familiar access matrix Protection state of the system is given by the tuple (OBJ, SUB, t, AM) The specification for changing the protection state is given by an authorization scheme

6 ACCESS MATRIX subjectssubjects objects u : s f : o r w own

7 Authorization Scheme A set of access rights R. Disjoint sets of subject and object types, TS and TO, respectively. A collection of three classes of state changing commands: Transformation commands, Create commands and Destroy commands

8 Transformation Commands Command name (S1:s1,....Sn:sn, O:o) if predicate then sequence of primitive operations enter/delete r into [S, O] end Command transfer-ownership (S1:s, S2:s, O:o) if own [S1,O] then enter own in [S2,O] deleterown from [S1,O] end Example:

9 Create Commands Command create (S1:s1, O:o) create object O enter own in [S1, O] end

10 Destroy Commands Command destroy (S1:s1, O:o) destroy object O end if own [S1,O] then

11 A set of rights R A set of disjoint subject and object types TS and TO respectively A set of state-changing transformation, creation and destroy commands The initial state TRM SUMMARY

12 Document Release Example A document cannot be released by a scientist without first obtaining approval from a patent-officer. Types = { sci, po, doc} Rights = {read, write, own, review, pat-ok, pat-reject, release}

13 Command create-doc (S:sci, O:doc) create object O enter own in [S,O] enter read in [S,O] enter write in [S,O] end Create Command

14 Document Release Example S: sci P: po O :doc own read write

15 command rqst-review (S:sci, P:po, O:doc) if own [S,O] then enter review in [P,O] delete write from [S,O] end write [S,O] Request Review

16 Get-Approval/Rejection command get-approval (S:sci, P:po, O:doc) if own [S,O] then enter pat-ok in [S,O] delete review from [P,O] end review [P,O] command get-rejection (S:sci, P:po, O:doc) if own [S,O] then enter pat-reject in [S,O] delete review from [P,O] end review [P,O]

17 Release / Revise Document command release-doc (S:sci, O:doc) if pat-ok [S,O] then enter release in [S,O] delete pat-ok from [S,O] end command revise-doc (S:sci, O:doc) if pat-reject [S,O] then enter write in [S,O] delete pat-reject from [S,O] end

18 Expressive Power TRM BTRM The document release example has commands which test for atmost two cells of the matrx. Binary Transformation Model (Sandhu & Ganta, Oakland 94)

19 Expressive Power UTRM TRM UTRM BTRM ? ?

20 requires every subject in the simulation to be of a different type. Esorics 94

21 UTRM BTRM if every subject cannot be of a different type

22 Conclusion UTRM BTRM impractical simulation in general UTRM < BTRM for all practical purposes

Download ppt "On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta Center for Secure Information Systems George Mason University."

Similar presentations

1 Formal Model and Analysis of Usage Control Dissertation defense Student: Xinwen Zhang Director: Ravi S. Sandhu Co-director: Francesco Parisi-Presicce.

1 Formal Model and Analysis of Usage Control Dissertation defense Student: Xinwen Zhang Director: Ravi S. Sandhu Co-director: Francesco Parisi-Presicce.
© 2004 Ravi Sandhu www.list.gmu.edu The Schematic Protection Model (SPM) Ravi Sandhu Laboratory for Information Security Technology George Mason University.

© 2004 Ravi Sandhu The Schematic Protection Model (SPM) Ravi Sandhu Laboratory for Information Security Technology George Mason University.
© 2004 Ravi Sandhu www.list.gmu.edu The Safety Problem in Access Control HRU Model Ravi Sandhu Laboratory for Information Security Technology George Mason.

© 2004 Ravi Sandhu The Safety Problem in Access Control HRU Model Ravi Sandhu Laboratory for Information Security Technology George Mason.
Stale-Safe Security Properties for Secure Information Sharing Ram Krishnan (GMU) Jianwei Niu (UT San Antonio) Ravi Sandhu (UT San Antonio) William Winsborough.

Stale-Safe Security Properties for Secure Information Sharing Ram Krishnan (GMU) Jianwei Niu (UT San Antonio) Ravi Sandhu (UT San Antonio) William Winsborough.
1 Safety Analysis of Usage Control (UCON) Authorization Model Xinwen Zhang, Ravi Sandhu, and Francesco Parisi-Presicce George Mason University AsiaCCS.

1 Safety Analysis of Usage Control (UCON) Authorization Model Xinwen Zhang, Ravi Sandhu, and Francesco Parisi-Presicce George Mason University AsiaCCS.
A Usage-based Authorization Framework for Collaborative Computing Systems Xinwen Zhang George Mason University Masayuki Nakae NEC Corporation Michael J.

A Usage-based Authorization Framework for Collaborative Computing Systems Xinwen Zhang George Mason University Masayuki Nakae NEC Corporation Michael J.
Logical Model and Specification of Usage Control Xinwen Zhang, Jaehong Park Francesco Parisi-Presicce, Ravi Sandhu George Mason University.

Logical Model and Specification of Usage Control Xinwen Zhang, Jaehong Park Francesco Parisi-Presicce, Ravi Sandhu George Mason University.
How to do Discretionary Access Control Using Roles Ravi Sandhu Qamar Munawer.

How to do Discretionary Access Control Using Roles Ravi Sandhu Qamar Munawer.
A Logic Specification for Usage Control Xinwen Zhang, Jaehong Park Francesco Parisi-Presicce, Ravi Sandhu George Mason University SACMAT 2004.

A Logic Specification for Usage Control Xinwen Zhang, Jaehong Park Francesco Parisi-Presicce, Ravi Sandhu George Mason University SACMAT 2004.
© Ravi Sandhu HRU and TAM Ravi Sandhu Laboratory for Information Security Technology George Mason University

© Ravi Sandhu HRU and TAM Ravi Sandhu Laboratory for Information Security Technology George Mason University
© 2004 Ravi Sandhu www.list.gmu.edu The Typed Access Matrix Model (TAM) and Augmented TAM (ATAM) Ravi Sandhu Laboratory for Information Security Technology.

© 2004 Ravi Sandhu The Typed Access Matrix Model (TAM) and Augmented TAM (ATAM) Ravi Sandhu Laboratory for Information Security Technology.
Developing Event Driven State Machine Workflows S1 S2 S3 S4 Adam Calderon Principal Engineer - Interknowlogy Microsoft MVP – C#

Developing Event Driven State Machine Workflows S1 S2 S3 S4 Adam Calderon Principal Engineer - Interknowlogy Microsoft MVP – C#
November 1, 2004Introduction to Computer Security ©2004 Matt Bishop Slide #3-1 Chapter 3: Foundational Results Overview Harrison-Ruzzo-Ullman result –Corollaries.

November 1, 2004Introduction to Computer Security ©2004 Matt Bishop Slide #3-1 Chapter 3: Foundational Results Overview Harrison-Ruzzo-Ullman result –Corollaries.
ITIS 3200: Introduction to Information Security and Privacy Dr. Weichao Wang.

ITIS 3200: Introduction to Information Security and Privacy Dr. Weichao Wang.
1 September 14, 2006 Lecture 3 IS 2150 / TEL 2810 Introduction to Security.

1 September 14, 2006 Lecture 3 IS 2150 / TEL 2810 Introduction to Security.
Training Needs Analysis Report Rapid Analysis and Design (RAD)

Training Needs Analysis Report Rapid Analysis and Design (RAD)
NE SNIP PRIVACY WORKGROUP Use and Disclosure of Protected Health Information Regarding a Deceased Individual.

NE SNIP PRIVACY WORKGROUP Use and Disclosure of Protected Health Information Regarding a Deceased Individual.
CSCE 201 Introduction to Information Security Fall 2010 Access Control.

CSCE 201 Introduction to Information Security Fall 2010 Access Control.
Doc.: IEEE 802.22-06/0227r0 Submission Nov 2006 Wu Yu-Chun, Huawei HisiSlide 1 Beacon Sync Frame Proposal for the 802.22.1 IEEE P802.22 Wireless RANs Date:

Doc.: IEEE /0227r0 Submission Nov 2006 Wu Yu-Chun, Huawei HisiSlide 1 Beacon Sync Frame Proposal for the IEEE P Wireless RANs Date:
Lattice-Based Access Control Models Ravi S. Sandhu Colorado State University CS 681 Spring 2005 John Tesch.

Lattice-Based Access Control Models Ravi S. Sandhu Colorado State University CS 681 Spring 2005 John Tesch.

Similar presentations

Ads by Google