A New Modeling Paradigm for Dynamic Authorization in Multi-Domain Systems
1 / 19

Manoj Sastry, Ram Krishnan, Ravi Sandhu Intel Corporation, USA George Mason University, USA - PowerPoint PPT Presentation

  • Uploaded on

A New Modeling Paradigm for Dynamic Authorization in Multi-Domain Systems MMM-ACNS, September 13, 2007. Manoj Sastry, Ram Krishnan, Ravi Sandhu Intel Corporation, USA George Mason University, USA University of Texas, San Antonio, USA. Outline. Introduction Usage Scenario

I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.
Download Presentation

PowerPoint Slideshow about 'Manoj Sastry, Ram Krishnan, Ravi Sandhu Intel Corporation, USA George Mason University, USA' - elmer

An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.

- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript
Manoj sastry ram krishnan ravi sandhu intel corporation usa george mason university usa

A New Modeling Paradigm for Dynamic Authorization in Multi-Domain SystemsMMM-ACNS, September 13, 2007

Manoj Sastry, Ram Krishnan, Ravi Sandhu

Intel Corporation, USA

George Mason University, USA

University of Texas, San Antonio, USA

Outline Multi-Domain Systems

  • Introduction

  • Usage Scenario

  • Characteristics of Multi-Domain Interactions

  • Concept of Dynamic Attributes

  • UCON Background

  • EUCON Model & Components

  • Summary

Introduction Multi-Domain Systems

  • Emergence of mobile devices & ubiquitous n/w

    • Anytime, Anywhere connectivity

  • Mobility causes users to transcend domains

  • Traditional ABAC unsuitable for dynamic env

    • Attributes pre-defined

    • Extensive a-priori agreement of attribute semantics

  • New paradigm for modeling access control

    • Dynamic & Multi-domain interactions

Usage scenario

Purchase Multi-Domain Systems


Usage Scenario

  • Alice makes a purchase of $100 at Coffee Shop

  • Coffee Shop provides a $10 ‘credit’ to Alice

  • Credit usable at multiple stores

  • Later, Alice uses ‘credit’ to purchase a book at Book Store


Shop (CS)


Shop (BS)



Characteristics of multi domain interactions
Characteristics of Multi-Domain Interactions Multi-Domain Systems

  • Subjects/Objects interact with multiple systems

    • E.g., Alice interacts with Coffee Shop & Book Store

  • Information is dynamic & transcends systems

    • E.g., Alice acquired a ‘credit’ at Coffee Shop & used it to buy a book at the Book Store

  • Prior agreement of semantics not desirable

    • E.g., Coffee Shop issues ‘credit’ to Alice that has to be interpreted by Book Store at authorization time; next day, Coffee Shop may issue ‘coupon’

Multi-Domain Attributes

Dynamic Attributes

Concept of dynamic attributes
Concept of Dynamic Attributes Multi-Domain Systems

  • Not pre-defined attributes

  • Not attributes whose value is dynamic

  • New-born attributes with new name-value pairs

  • E.g., ‘Credit’ was dynamically created by Coffee Shop; Book Store needs to interpret the semantics when Alice uses it to buy a book

Usage control model ucon background
Usage Control Model (UCON) Background Multi-Domain Systems

Proposed extensions to UCON -> EUCON

Classification of eucon attributes
Classification of EUCON Attributes Multi-Domain Systems

  • Classification based on two factors

    • Time of attribute definition

      • Pre-defined Attributes

      • Dynamic Attributes

    • Scope of attribute definition

      • Local Attributes

      • Multi-Domain Attributes

Eucon attributes pla pma dla
EUCON Attributes: PLA, PMA, DLA Multi-Domain Systems

  • Pre-Defined Local Attributes (PLA)

    • Same as current notion of attributes in attribute-based access control models such as UCON

  • Pre-Defined Multi-Domain Attributes (PMA)

    • A-priori agreement of attribute semantics across multiple domains

  • Dynamic Local Attributes (DLA)

    • Dynamically created but interpretable within same domain

    • E.g., Coffee Shop could create an attribute ‘discount’ that is usable at a later date at the same store

Eucon attributes dma
EUCON Attributes: DMA Multi-Domain Systems

  • Dynamic Multi-Domain Attributes (DMA)

    • New approach to model emerging usage scenarios

    • Attributes created on the fly and interpretable in multiple domains at authorization time

    • Subject & Object Attributes can be DMA

      • E.g., ‘Credit’ is a new-born subject (Alice) attribute created by the Coffee Shop. Book Store interacts with CS at run time when Alice uses it to purchase a book

      • E.g., Alice checks in with airport security and the objects she carries gets a DMA “cleared=true”. Alice uses this DMA at the airline system to board

Eucon authorizations
EUCON Authorizations Multi-Domain Systems

  • Rules based on subject and object attributes

  • Pre-defined Local Authorization

    • Current UCON authorization

  • Pre-defined Multi-Domain Authorization

    • Current authorization methods for multi-domain

  • Dynamic Local Authorization

    • Construction of rules based on DLA

  • Dynamic Multi-Domain Authorization

    • Construction of dynamic authorization rules by interpreting DMA

    • E.g., Book Store interprets ‘credit’ at runtime and constructs dynamic authorization rules

Eucon obligations
EUCON Obligations Multi-Domain Systems

  • Subject pre-req before access can be granted

    • E.g., Alice agrees to a license before she can access whitepaper

  • Pre-defined Local & Dynamic Obligations

    • Obligations on local & dynamic attributes

  • Pre-defined Multi-Domain Obligations

    • Obligations interpretable across multiple domains

  • Dynamic Multi-Domain Obligations

    • Obligations on DMA

    • Defined dynamically and interpreted at multiple domains

    • E.g., Before Alice can use ‘credit’ at Book Store, she is obligated to engage in a transaction with another Coffee Shop within the Book Store

Eucon conditions
EUCON Conditions Multi-Domain Systems

  • System factors held before access granted

  • Dynamic Multi-Domain Conditions

    • Conditions on DMA interpretable at multiple domains

    • E.g., Book Store could dynamically discover a condition on using ‘credit’ such that current ‘credit’ usage on all Coffee Shop systems is not > $1000

Extended ucon eucon
Extended UCON (EUCON) Multi-Domain Systems

Summary Multi-Domain Systems

  • Emergence of mobile & dynamic apps

  • Users transcend domains in mobile env.

  • Current access control models unsuitable

  • New paradigm for dynamic, multi-domain

  • Proposed extensions to UCON - EUCON

Thank you
Thank You! Multi-Domain Systems


BACKUP Multi-Domain Systems

Related work
Related Work Multi-Domain Systems

  • Damiani, Vimercati & Samarati identify reqs

    • Similar to our requirements for a mobile env.

    • Survey extensions proposed for other models; however, our concept of DMA is different

  • Covington & Sastry have proposed CABAC

    • Authorization policies based entirely on attributes

    • Transaction attributes defined in this work is similar to our pre-defined multi-domain attributes