A New Modeling Paradigm for Dynamic Authorization in Multi-Domain Systems
Download
1 / 19

Manoj Sastry, Ram Krishnan, Ravi Sandhu Intel Corporation, USA George Mason University, USA - PowerPoint PPT Presentation


  • 139 Views
  • Uploaded on

A New Modeling Paradigm for Dynamic Authorization in Multi-Domain Systems MMM-ACNS, September 13, 2007. Manoj Sastry, Ram Krishnan, Ravi Sandhu Intel Corporation, USA George Mason University, USA University of Texas, San Antonio, USA. Outline. Introduction Usage Scenario

loader
I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.
capcha
Download Presentation

PowerPoint Slideshow about 'Manoj Sastry, Ram Krishnan, Ravi Sandhu Intel Corporation, USA George Mason University, USA' - elmer


An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript
Manoj sastry ram krishnan ravi sandhu intel corporation usa george mason university usa

A New Modeling Paradigm for Dynamic Authorization in Multi-Domain SystemsMMM-ACNS, September 13, 2007

Manoj Sastry, Ram Krishnan, Ravi Sandhu

Intel Corporation, USA

George Mason University, USA

University of Texas, San Antonio, USA


Outline
Outline Multi-Domain Systems

  • Introduction

  • Usage Scenario

  • Characteristics of Multi-Domain Interactions

  • Concept of Dynamic Attributes

  • UCON Background

  • EUCON Model & Components

  • Summary


Introduction
Introduction Multi-Domain Systems

  • Emergence of mobile devices & ubiquitous n/w

    • Anytime, Anywhere connectivity

  • Mobility causes users to transcend domains

  • Traditional ABAC unsuitable for dynamic env

    • Attributes pre-defined

    • Extensive a-priori agreement of attribute semantics

  • New paradigm for modeling access control

    • Dynamic & Multi-domain interactions


Usage scenario

Purchase Multi-Domain Systems

Alice

Usage Scenario

  • Alice makes a purchase of $100 at Coffee Shop

  • Coffee Shop provides a $10 ‘credit’ to Alice

  • Credit usable at multiple stores

  • Later, Alice uses ‘credit’ to purchase a book at Book Store

Coffee

Shop (CS)

Book

Shop (BS)

Credit

Credit


Characteristics of multi domain interactions
Characteristics of Multi-Domain Interactions Multi-Domain Systems

  • Subjects/Objects interact with multiple systems

    • E.g., Alice interacts with Coffee Shop & Book Store

  • Information is dynamic & transcends systems

    • E.g., Alice acquired a ‘credit’ at Coffee Shop & used it to buy a book at the Book Store

  • Prior agreement of semantics not desirable

    • E.g., Coffee Shop issues ‘credit’ to Alice that has to be interpreted by Book Store at authorization time; next day, Coffee Shop may issue ‘coupon’

Multi-Domain Attributes

Dynamic Attributes


Concept of dynamic attributes
Concept of Dynamic Attributes Multi-Domain Systems

  • Not pre-defined attributes

  • Not attributes whose value is dynamic

  • New-born attributes with new name-value pairs

  • E.g., ‘Credit’ was dynamically created by Coffee Shop; Book Store needs to interpret the semantics when Alice uses it to buy a book


Usage control model ucon background
Usage Control Model (UCON) Background Multi-Domain Systems

Proposed extensions to UCON -> EUCON


Classification of eucon attributes
Classification of EUCON Attributes Multi-Domain Systems

  • Classification based on two factors

    • Time of attribute definition

      • Pre-defined Attributes

      • Dynamic Attributes

    • Scope of attribute definition

      • Local Attributes

      • Multi-Domain Attributes


Eucon attributes pla pma dla
EUCON Attributes: PLA, PMA, DLA Multi-Domain Systems

  • Pre-Defined Local Attributes (PLA)

    • Same as current notion of attributes in attribute-based access control models such as UCON

  • Pre-Defined Multi-Domain Attributes (PMA)

    • A-priori agreement of attribute semantics across multiple domains

  • Dynamic Local Attributes (DLA)

    • Dynamically created but interpretable within same domain

    • E.g., Coffee Shop could create an attribute ‘discount’ that is usable at a later date at the same store


Eucon attributes dma
EUCON Attributes: DMA Multi-Domain Systems

  • Dynamic Multi-Domain Attributes (DMA)

    • New approach to model emerging usage scenarios

    • Attributes created on the fly and interpretable in multiple domains at authorization time

    • Subject & Object Attributes can be DMA

      • E.g., ‘Credit’ is a new-born subject (Alice) attribute created by the Coffee Shop. Book Store interacts with CS at run time when Alice uses it to purchase a book

      • E.g., Alice checks in with airport security and the objects she carries gets a DMA “cleared=true”. Alice uses this DMA at the airline system to board


Eucon authorizations
EUCON Authorizations Multi-Domain Systems

  • Rules based on subject and object attributes

  • Pre-defined Local Authorization

    • Current UCON authorization

  • Pre-defined Multi-Domain Authorization

    • Current authorization methods for multi-domain

  • Dynamic Local Authorization

    • Construction of rules based on DLA

  • Dynamic Multi-Domain Authorization

    • Construction of dynamic authorization rules by interpreting DMA

    • E.g., Book Store interprets ‘credit’ at runtime and constructs dynamic authorization rules


Eucon obligations
EUCON Obligations Multi-Domain Systems

  • Subject pre-req before access can be granted

    • E.g., Alice agrees to a license before she can access whitepaper

  • Pre-defined Local & Dynamic Obligations

    • Obligations on local & dynamic attributes

  • Pre-defined Multi-Domain Obligations

    • Obligations interpretable across multiple domains

  • Dynamic Multi-Domain Obligations

    • Obligations on DMA

    • Defined dynamically and interpreted at multiple domains

    • E.g., Before Alice can use ‘credit’ at Book Store, she is obligated to engage in a transaction with another Coffee Shop within the Book Store


Eucon conditions
EUCON Conditions Multi-Domain Systems

  • System factors held before access granted

  • Dynamic Multi-Domain Conditions

    • Conditions on DMA interpretable at multiple domains

    • E.g., Book Store could dynamically discover a condition on using ‘credit’ such that current ‘credit’ usage on all Coffee Shop systems is not > $1000


Extended ucon eucon
Extended UCON (EUCON) Multi-Domain Systems


Summary
Summary Multi-Domain Systems

  • Emergence of mobile & dynamic apps

  • Users transcend domains in mobile env.

  • Current access control models unsuitable

  • New paradigm for dynamic, multi-domain

  • Proposed extensions to UCON - EUCON


Thank you
Thank You! Multi-Domain Systems


Backup

BACKUP Multi-Domain Systems


Related work
Related Work Multi-Domain Systems

  • Damiani, Vimercati & Samarati identify reqs

    • Similar to our requirements for a mobile env.

    • Survey extensions proposed for other models; however, our concept of DMA is different

  • Covington & Sastry have proposed CABAC

    • Authorization policies based entirely on attributes

    • Transaction attributes defined in this work is similar to our pre-defined multi-domain attributes