Presentation is loading. Please wait.

Presentation is loading. Please wait.

Ashish Kamra, Elisa Bertino Purdue University Presenter: Ashish Kundu 1.

Published byCori Owens Modified over 9 years ago

Similar presentations

Presentation on theme: "Ashish Kamra, Elisa Bertino Purdue University Presenter: Ashish Kundu 1."— Presentation transcript:

1 Ashish Kamra, Elisa Bertino Purdue University Presenter: Ashish Kundu 1

2 The Real Authors 2 bertino@cs.purdue.edu akamra@purdue.edu

3 Motivation  Databases  Anomaly Detection  Anomaly Response  Access Control 3

4 4

5 Access Control Decision Semantics 5 Request Reference Monitor Allow Deny

6 Extended Decision Semantics 6 Request Reference Monitor Allow Deny Taint Suspend

7 Primary Contribution Mechanism to enhance the decision semantics of an access control implementation 7

8 Why do we want to do that? 8

9 Support for fine-grained intrusion response 9 Request Detection engine Response engine Anomaly Drop Request Log Request 2nd factor of authentication Passive Monitoring

10 Mapping 10 Passive Monitoring Taint decision semantic 2 nd factor of authentication Suspend decision semantics

11 Privilege States - glue for the mapping  Assign states to privileges  Response system changes privilege state  fine-grained response actions  Response : access control decision semantics 11

12 Privilege States 12  “state” to every privilege  a user or role  Five privilege states DENY SUSPEND TAINT GRANT UNASSIGN

13 Privilege State Semantics 13  “DENY”: negative authorizations  “SUSPEND”: request suspension  “TAINT”: request tainting  “GRANT”: standard SQL GRANT  “UNASSIGN”: standard SQL REVOKE

14 Example  U1 is a member of role R1  DBA assigns  SELECT privilege in DENY on T1 to user U1  SELECT privilege in TAINT on T1 to role R1  Privilege state of SELECT on T1 for U1 ??? 14

15 Privilege State Dominance 15 X means ‘X’ overrides ‘Y’ DENY SUSPEND TAINT UNASSIGN GRANT Y

16 Privilege State Transitions + / + + ? ? ? / / / + / + grant deny ? suspend / unassign taint ? + TAINT SUSPEND DENY GRANTREVOKE ? 16

17 Formal model 17 For details, please refer to the paper …

18 Considering Role Hierarchies  Role hierarchy based on privilege inheritance  What about privileges in “deny”, “suspend” and “taint” states? R_parent {insert} R_child {select} 18

19 Privilege Orientation Modes 19 up down neutral unassign, grant deny, taint, suspend

20 Privilege Propagation R8R8 R5R5 R6R6 R7R7 R2R2 R3R3 R4R4 R1R1 20 {select,grant} {insert,deny,down} Recursive Propagation

21 Implementation in PostgreSQL  New SQL commands  TAINT, SUSPEND  Enhanced Access Control Lists  To support privilege states and orientation modes  Re-authentication procedure for a privilege in “suspend” state 21

22 Access Control Check Overhead No Role Hierarchy 22 ACL Size

23 23 ACL Size Access Control Check Overhead With Role Hierarchy

24 Conclusions  Fine-granular access control in databases  Anomaly response mechanisms  Facilitates policy development  Formal model and experimental evaluation 24

Download ppt "Ashish Kamra, Elisa Bertino Purdue University Presenter: Ashish Kundu 1."

Similar presentations

RBAC Role-Based Access Control

RBAC Role-Based Access Control
Institute for Cyber Security

Institute for Cyber Security
MySQL Access Privilege System

MySQL Access Privilege System
Hive Security Yongqiang He Software Engineer Facebook Data Infrastructure Team.

Hive Security Yongqiang He Software Engineer Facebook Data Infrastructure Team.
Login dan Permission dfd, 2012. Jenis Login dfd, 2012 SQL Server Authentication Membutuhkan password Windows Authentication Mode Tidak membutuhkan password.

Login dan Permission dfd, Jenis Login dfd, 2012 SQL Server Authentication Membutuhkan password Windows Authentication Mode Tidak membutuhkan password.
Login dan Permission dfd, 2012. Jenis Login dfd, 2012 SQL Server Authentication Membutuhkan password Windows Authentication Mode Tidak membutuhkan password.

Login dan Permission dfd, Jenis Login dfd, 2012 SQL Server Authentication Membutuhkan password Windows Authentication Mode Tidak membutuhkan password.
Database Security Design Secure DBMS design: The basis for any secure database is a secure DBMS. There are different architectures depending on different.

Database Security Design Secure DBMS design: The basis for any secure database is a secure DBMS. There are different architectures depending on different.
CREATE LOGIN James WITH PASSWORD = 'A' Answer: SQL 2005 and 2008 can enforce the password policy of the operating system. CREATE LOGIN James WITH PASSWORD.

CREATE LOGIN James WITH PASSWORD = 'A' Answer: SQL 2005 and 2008 can enforce the password policy of the operating system. CREATE LOGIN James WITH PASSWORD.
Access Control RBAC Database Activity Monitoring.

Access Control RBAC Database Activity Monitoring.
Database Security - Farkas 1 Database Security and Privacy.

Database Security - Farkas 1 Database Security and Privacy.
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 5 Database Application Security Models.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 5 Database Application Security Models.
“Managing Update Conflicts in Bayou, a Weakly Connected Replicated Storage System ” Distributed Systems Κωνσταντακοπούλου Τζένη.

“Managing Update Conflicts in Bayou, a Weakly Connected Replicated Storage System ” Distributed Systems Κωνσταντακοπούλου Τζένη.
Chapter 5 Database Application Security Models

Chapter 5 Database Application Security Models
Brian Alderman | MCT, CEO / Founder of MicroTechPoint Pete Harris | Microsoft Senior Content Publisher.

Brian Alderman | MCT, CEO / Founder of MicroTechPoint Pete Harris | Microsoft Senior Content Publisher.
1 RAKSHA: A FLEXIBLE ARCHITECTURE FOR SOFTWARE SECURITY Computer Systems Laboratory Stanford University Hari Kannan, Michael Dalton, Christos Kozyrakis.

1 RAKSHA: A FLEXIBLE ARCHITECTURE FOR SOFTWARE SECURITY Computer Systems Laboratory Stanford University Hari Kannan, Michael Dalton, Christos Kozyrakis.
Role Based Access Control Models Presented By Ankit Shah 2 nd Year Master’s Student.

Role Based Access Control Models Presented By Ankit Shah 2 nd Year Master’s Student.
Distributed Computer Security 8.2 Discretionary Access Control Models - Sai Phalgun Tatavarthy.

Distributed Computer Security 8.2 Discretionary Access Control Models - Sai Phalgun Tatavarthy.
Lecture slides prepared for “Computer Security: Principles and Practice”, 2/e, by William Stallings and Lawrie Brown, Chapter 4 “Overview”.

Lecture slides prepared for “Computer Security: Principles and Practice”, 2/e, by William Stallings and Lawrie Brown, Chapter 4 “Overview”.
Chapter 10 Overview  Implement Microsoft Windows Authentication Mode and Mixed Mode  Assign login accounts to database user accounts and roles  Assign.

Chapter 10 Overview  Implement Microsoft Windows Authentication Mode and Mixed Mode  Assign login accounts to database user accounts and roles  Assign.
Authentication and authorization Access control consists of two steps, authentication and authorization. Subject Do operation Reference monitor Object.

Authentication and authorization Access control consists of two steps, authentication and authorization. Subject Do operation Reference monitor Object.

Similar presentations

Ads by Google