Presentation is loading. Please wait.

Presentation is loading. Please wait.

Mapping Company Classification Policy to the S/MIME Security Label Weston Nicolls S/MIME Working Group Meeting December 13, 2000.

Published byGeorgina Lambert Modified over 9 years ago

Similar presentations

Presentation on theme: "Mapping Company Classification Policy to the S/MIME Security Label Weston Nicolls S/MIME Working Group Meeting December 13, 2000."— Presentation transcript:

1 Mapping Company Classification Policy to the S/MIME Security Label Weston Nicolls wnicolls@telenisus.com S/MIME Working Group Meeting December 13, 2000

2 Telenisus Corporation2 Purpose Informational RFC Build on Security Label feature defined in ESS for S/MIME - RFC 2634 Show how Security Label can used to implement an organizational security policy

3 Telenisus Corporation3 3 rd Draft Classification Policies and Examples for: –Amoco Corporation General, Confidential, Highly Confidential –Caterpillar Inc Public, Confidential Green, Confidential Yellow, Confidential Red –Whirlpool Corporation Public, Internal, Confidential

4 Telenisus Corporation4 3 rd Draft Security Categories syntax and examples Attribute Owner Clearance examples Privacy Mark examples

5 Telenisus Corporation5 Security Category Syntax SecurityCategories ::= SET SIZE (1..ub-security-categories) OF SecurityCategory ub-security-categories INTEGER ::= 64 SecurityCategory ::= SEQUENCE { type[0] OBJECT IDENTIFIER value[1] ANY DEFINED BY type } -- defined by type

6 Telenisus Corporation6 Security Category Syntax One example of a SecurityCategory syntax is SecurityCategoryValues, as follows. When id-securityCategoryValues is present in the SecurityCategory type field, then the SecurityCategory value field could take the form of SecurityCategoryValues as follows: SecurityCategoryValues ::= SEQUENCE OF UTF8String

7 Telenisus Corporation7 Example ESSSecurityLabel: security-policy-identifier: id-tsp-3 security-classification: 9 privacy-mark: ATTORNEY-CLIENT PRIVILEGED INFORMATION security-categories: SEQUENCE OF SecurityCategory SecurityCategory #1 type: id-tsp-4 value: LAW DEPARTMENT USE ONLY

8 Telenisus Corporation8 Example Clearance Attribute (passes access control check): Clearance: policyId: id-tsp-3 classList BIT STRING: Bits 0, 1, 2, 9 are set to TRUE securityCategories: SEQUENCE OF SecurityCategory SecurityCategory #1 type: id-tsp-4 value: LAW DEPARTMENT USE ONLY

Download ppt "Mapping Company Classification Policy to the S/MIME Security Label Weston Nicolls S/MIME Working Group Meeting December 13, 2000."

Similar presentations

2 3 Global Foundation Services Security Global Delivery Sustainability Infrastructure.

2 3 Global Foundation Services Security Global Delivery Sustainability Infrastructure.
The ]po[ Workflow Introduction Frank Bergmann, 2006-11-15 This guide contains ]po[ workflow overview information for developers with experience with PostgreSQL.

The ]po[ Workflow Introduction Frank Bergmann, This guide contains ]po[ workflow overview information for developers with experience with PostgreSQL.
The Build-up of the Red Sequence at z

The Build-up of the Red Sequence at z
ISA 562 Information System Security

ISA 562 Information System Security
MS-Excel XP Lesson 5. Exponentiation 1.A1  2 A2  3 A3  =A1^A2 B1  =2^4 2.^ for exponentiation.

MS-Excel XP Lesson 5. Exponentiation 1.A1  2 A2  3 A3  =A1^A2 B1  =2^4 2.^ for exponentiation.
Chapter 9: Access Control Lists

Chapter 9: Access Control Lists
Chapter 4: Security Policy Documents & Organizational Security Policies.

Chapter 4: Security Policy Documents & Organizational Security Policies.
What’s Next What We believe Who We Are Cloud Computing Big data Mobility Social Enterprise.

What’s Next What We believe Who We Are Cloud Computing Big data Mobility Social Enterprise.
Security and Integrity

Security and Integrity
National Institute of Standards and Technology 1 NIST Guidance and Standards on System Level Information Security Management Dr. Alicia Clay Deputy Chief.

National Institute of Standards and Technology 1 NIST Guidance and Standards on System Level Information Security Management Dr. Alicia Clay Deputy Chief.
How computers answer questions An introduction to machine learning Peter Barnum August 7, 2008.

How computers answer questions An introduction to machine learning Peter Barnum August 7, 2008.
Mobile Testing Applications Confidential & Proprietary.

Mobile Testing Applications Confidential & Proprietary.
Auditing Logical Access in a Network Environment Presented By, Eric Booker and Mark Ren New York State Comptroller’s Office Network Security Unit.

Auditing Logical Access in a Network Environment Presented By, Eric Booker and Mark Ren New York State Comptroller’s Office Network Security Unit.
Security Policies University of Sunderland CSEM02 Harry R. Erwin, PhD.

Security Policies University of Sunderland CSEM02 Harry R. Erwin, PhD.
Joseph Kummer Terri Berry Brad White.  1. Specific instances of employee hacking and the consequences which resulted therefrom.  2. How employees utilize.

Joseph Kummer Terri Berry Brad White.  1. Specific instances of employee hacking and the consequences which resulted therefrom.  2. How employees utilize.
© Huron Consulting Group. All rights reserved. BOSTON CHARLOTTE CHICAGO HOUSTON NEW YORK SAN FRANCISCO Experience. Redefined. Grants Research Forum FSU/FAMU.

© Huron Consulting Group. All rights reserved. BOSTON CHARLOTTE CHICAGO HOUSTON NEW YORK SAN FRANCISCO Experience. Redefined. Grants Research Forum FSU/FAMU.
By: Jessica Gonzalez Eli Tizcareño SUSTAINABILITY POLICY: 20% REAL FOOD.

By: Jessica Gonzalez Eli Tizcareño SUSTAINABILITY POLICY: 20% REAL FOOD.
Security+ All-In-One Edition Chapter 19 – Privilege Management Brian E. Brzezicki.

Security+ All-In-One Edition Chapter 19 – Privilege Management Brian E. Brzezicki.
Attorney-Client Privilege Issues

Attorney-Client Privilege Issues
Michael Myers VeriSign, Inc.

Michael Myers VeriSign, Inc.

Similar presentations

Ads by Google