ºÝºÝߣ

ºÝºÝߣShare a Scribd company logo

access-control-basics-murat-kantarcioglu.pdf

N
NohaNagy5

Access control regulates operations on protected data and resources. It aims to control what subjects can do to prevent damage. Access control is provided by operating systems and database management systems. It uses reference monitors to grant or deny access requests from subjects for objects based on access control policies and permissions. Access control mechanisms implement the access control function using permissions or subject/object attributes to make access decisions.

1 of 25
Download to read offline
UT DALLAS UT DALLAS Erik Jonsson School of Engineering & Computer Science FEARLESS engineering Access Control Basics Murat Kantarcioglu
FEARLESS engineering Access Control - basic concepts • An access control system regulates the operations that can be executed on data and resources to be protected • Its goal is to control operations executed by subjects in order to prevent actions that could damage data and resources • Access control is typically provided as part of the operating system and of the database management system (DBMS)
FEARLESS engineering Access Control - basic concepts Subject Access request Reference monitor Object • The very nature of access control suggests that there is an active subject requiring access to a passive object to perform some specific access operation. • A reference monitor grants or denies access • This fundamental and simple notion of access control is due to Lampson ------------------ B. Lampson. Protection. ACM Operating System Reviews, 8, 1974.
FEARLESS engineering Access Control Mechanism • It is typically a software system implementing the access control function • It is usually part of other systems • The access control mechanism uses some access control policies to decide whether to grant or deny a subject access to a requested resource • We will refer to an access control system as system comprising an access control mechanism and all information required to take access control decisions (for example, access permissions)
FEARLESS engineering Object • Anything that holds data, such as relations, directories, interprocess messages, network packets, I/O devices, or physical media • We often refer to objects, controlled by the access control system, as protection objects • Note that not all resources managed by a system need to be protected
FEARLESS engineering Subject • An abstraction of any active entity that performs computation in the system • Subjects can be classified into: – users -- single individuals connecting to the system – groups -- sets of users – roles -- named collections of privileges / functional entities within the organization – processes -- executing programs on behalf of users • Relations may exist among the various types of subject
FEARLESS engineering Access Operations - Access Modes • Operations that a subject can exercise on the protected objects in the system • Each type of operation corresponds to an access mode • The basic idea is that several different types of operation may be executed on a given type of object; the access control system must be able to control the specific type of operation • The most simple example of access modes is: – read look at the contents of an object – write change the contents of an object • In reality, there is a large variety of access modes • The access modes supported by an access control mechanism depend on the resources to be protected (read, write, execute, select, insert, update, delete, …) • Often an access control system uses modes with the same name for different types of object; the same mode can correspond to different operations when applied to different objects
FEARLESS engineering Access Operations - Access Modes An example • Unix operating system – Access modes defined for files • read: reading from a file • write: writing to a file • execute: executing a (program) file – Access models defined for directories • read: list a directory contents • write: create or rename a file in a directory • execute: search a directory
FEARLESS engineering Access Operations Access Permissions and Attributes • How does the reference monitor decides whether to give access or not? • Main approaches: – It uses access permissions • Typical of discretionary access control (DAC) models – It uses information (often referred to as attributes) concerning subjects and objects • Typical of multilevel access control (MAC) models • More innovative approaches have been developed where access permissions can be also expressed in terms of object and subject attributes and even context parameters
FEARLESS engineering Access Operations Access Permissions Subject Access request Reference monitor Object Access Permissions Access Control Policies
FEARLESS engineering Access Permissions • Access permissions, also called authorizations, are expressed in terms of subjects, objects, and access modes • From a conceptual point of view an access permission is a tuple <s, o, a> where – s is a subject – o is an object – a is an access mode It states that subject s has the permission to execute operation a on object o We also say that s has access right a on object o • Example: the access permission <Bob, Read, F1> states that Bob has the permission to read file F1
FEARLESS engineering Access Permissions • Subjects, objects, and access modes can be organized into hierarchies • The semantics of the hierarchy depends on the domain • The use of hierarchies has two important advantages: – It reduces the number of permissions that need to be entered into the access control system, thus reducing administration costs – Combined with negative authorizations (to be discussed later on), it supports the specification of exceptions
FEARLESS engineering Object Hierarchy object component object PART-OF directory file
FEARLESS engineering Role Hierarchy senior role junior role technical manager programmer
FEARLESS engineering Group Hierarchy group group member GROUP MEMBERSHIP University CS Dept Suppose that the group CS department has 200 members and the University group 5000 members; suppose we have the policy that the department calendar can be read to all members of the University and written only by the members of CS; these policies can be encoded into two access permissions of the form: <University, calendar, Read> <CS Dept, calendar, Write>
FEARLESS engineering Access Mode Hierarchy mode implied mode SUBSUMPTION write read
FEARLESS engineering Groups and Negative Permissions • Groups can be seen as an intermediate level between users and objects • An example of an ideal world where all access permissions are mediated by groups g1 g2 s1 s2 s3 s4 s5 Users Groups Objects o1 o2 o3 o4 o5 o6
FEARLESS engineering Groups and Negative Permissions • Often access control policies have special cases where is proves convenient to give some user a permission for an object directly or deny a user a permission that it would normally derive from its membership in some group • A negative permission specifies an operation that a subject is not allowed to perform • Representing negative permissions requires extending our simple tuple model with an additional component: <s, o, a, sign> where sign Î{+, -}
FEARLESS engineering Groups and Negative Permissions An example in which not all access permissions are mediated through groups Users Groups Objects g1 s1 s2 s3 o1 o2 o3 o4 o5
FEARLESS engineering Ownership and Administration • A key question when dealing with access control is who specifies which subjects can access which objects for which operations • In the case of permissions, this means specifying which are the subjects that can enter permissions
FEARLESS engineering Ownership and Administration Two basic options • Discretionary approach – the owner of a resource decrees who is allowed to have access – But then: who is the owner of a resource? • Mandatory approach – a system-wide policy decrees who is allowed to have access
FEARLESS engineering Access Control Structures The most well known access control structures for DAC models are based on the notion of Access Control Matrix. Let: - S be a set of subjects - O be a set of objects - A be a set of access modes An access control matrix M on S, O, and A is defined as M = (Mso)s ∊ S, o ∊ O with Mso ⊂ A The entry Mso specifies the set of access operations subject s can perform on object o.
FEARLESS engineering Access Control Structures Example {execute, read, write} - {read, write} Bill {execute, read} {execute} - Alice fun.dir edit.exe bill.doc
FEARLESS engineering Access Control Structures Access Control Lists and Capabilities • Directly implementing access control matrices is quite inefficient, because in most cases these matrices are sparse • Therefore two main implementations have been developed – Access control lists • Used in DBMS and Operating Systems – Capabilities
FEARLESS engineering Basic Operations in Access Control • Grant permissions – Inserting values in the matrix’s entries • Revoke permissions – Remove values from the matrix’s entries • Check permissions – Verifying whether the entry related to a subject s and an object o contains a given access mode

Recommended

Ch13 protection
Ch13 protectionCh13 protection
Ch13 protection
Welly Dian Astika
Ìý
Least privilege, access control, operating system security
Least privilege, access control, operating system securityLeast privilege, access control, operating system security
Least privilege, access control, operating system security
G Prachi
Ìý
Protection
ProtectionProtection
Protection
Mohanlal Sukhadia University (MLSU)
Ìý
Os8
Os8Os8
Os8
gopal10scs185
Ìý
Os8
Os8Os8
Os8
gopal10scs185
Ìý
AccessControl.ppt
AccessControl.pptAccessControl.ppt
AccessControl.ppt
DAKSHATAPANCHAL2
Ìý
Week No 13 Access Control Part 1.pptx
Week No 13 Access Control Part 1.pptxWeek No 13 Access Control Part 1.pptx
Week No 13 Access Control Part 1.pptx
XhamiiiCH
Ìý
4_5949547032388570388.ppt
4_5949547032388570388.ppt4_5949547032388570388.ppt
4_5949547032388570388.ppt
MohammedMohammed578197
Ìý
Topic 7 access control
Topic 7 access controlTopic 7 access control
Topic 7 access control
Khawar Nehal khawar.nehal@atrc.net.pk
Ìý
SE Linux
SE LinuxSE Linux
SE Linux
primeteacher32
Ìý
Protection Domain and Access Matrix Model -Operating System
Protection Domain and Access Matrix Model -Operating SystemProtection Domain and Access Matrix Model -Operating System
Protection Domain and Access Matrix Model -Operating System
LalfakawmaKh
Ìý
Operating Systems Protection and Security
Operating Systems Protection and SecurityOperating Systems Protection and Security
Operating Systems Protection and Security
Sivakumar M
Ìý
S5-Authorization
S5-AuthorizationS5-Authorization
S5-Authorization
zakieh alizadeh
Ìý
Distributed Operating System Resource Security And Protection: Access and Flo...
Distributed Operating System Resource Security And Protection: Access and Flo...Distributed Operating System Resource Security And Protection: Access and Flo...
Distributed Operating System Resource Security And Protection: Access and Flo...
Aki Akshaya.D
Ìý
Protection and security of operating system
Protection and security of operating systemProtection and security of operating system
Protection and security of operating system
Abdullah Khosa
Ìý
resource security and protection in distributed system
resource security and protection in distributed systemresource security and protection in distributed system
resource security and protection in distributed system
sathiabama40
Ìý
Lucene solrrev documentlevelsecurity_rajanimaski_final
Lucene solrrev documentlevelsecurity_rajanimaski_finalLucene solrrev documentlevelsecurity_rajanimaski_final
Lucene solrrev documentlevelsecurity_rajanimaski_final
Rajani Maski
Ìý
Design for security in operating system
Design for security in operating systemDesign for security in operating system
Design for security in operating system
Bhagyashree Barde
Ìý
Chapter 14 - Protection
Chapter 14 - ProtectionChapter 14 - Protection
Chapter 14 - Protection
Wayne Jones Jnr
Ìý
A Novel methodology for handling Document Level Security in Search Based Appl...
A Novel methodology for handling Document Level Security in Search Based Appl...A Novel methodology for handling Document Level Security in Search Based Appl...
A Novel methodology for handling Document Level Security in Search Based Appl...
lucenerevolution
Ìý
unit 1access models _3.pptxscscsscscscsc
unit 1access models _3.pptxscscsscscscscunit 1access models _3.pptxscscsscscscsc
unit 1access models _3.pptxscscsscscscsc
zmulani8
Ìý
Sharing and security in Salesforce
Sharing and security in SalesforceSharing and security in Salesforce
Sharing and security in Salesforce
Saurabh Kulkarni
Ìý
Top school in noida
Top school in noidaTop school in noida
Top school in noida
Edhole.com
Ìý
Dataverse Permissions Demystified - PowerAddicts BE 11-2022.pptx
Dataverse Permissions Demystified - PowerAddicts BE 11-2022.pptxDataverse Permissions Demystified - PowerAddicts BE 11-2022.pptx
Dataverse Permissions Demystified - PowerAddicts BE 11-2022.pptx
Rebekka Aalbers-de Jong
Ìý
Chapter 7
Chapter 7Chapter 7
Chapter 7
Seth Nurul
Ìý
Oerating system project
Oerating system projectOerating system project
Oerating system project
Hira Gul
Ìý
L-3.1.1 (1).pptx
L-3.1.1 (1).pptxL-3.1.1 (1).pptx
L-3.1.1 (1).pptx
AnandYadav24579
Ìý
Authorization Pattern.pptx power point s
Authorization Pattern.pptx power point sAuthorization Pattern.pptx power point s
Authorization Pattern.pptx power point s
Coderkids
Ìý
The Broccoli Dog's inner voice (look A)
The Broccoli Dog's inner voice (look A)The Broccoli Dog's inner voice (look A)
The Broccoli Dog's inner voice (look A)
merasan
Ìý
FESTIVAL: SINULOG & THINGYAN-LESSON 4.pptx
FESTIVAL: SINULOG & THINGYAN-LESSON 4.pptxFESTIVAL: SINULOG & THINGYAN-LESSON 4.pptx
FESTIVAL: SINULOG & THINGYAN-LESSON 4.pptx
DanmarieMuli1
Ìý

More Related Content

Similar to access-control-basics-murat-kantarcioglu.pdf (20)

Topic 7 access control
Topic 7 access controlTopic 7 access control
Topic 7 access control
Khawar Nehal khawar.nehal@atrc.net.pk
Ìý
SE Linux
SE LinuxSE Linux
SE Linux
primeteacher32
Ìý
Protection Domain and Access Matrix Model -Operating System
Protection Domain and Access Matrix Model -Operating SystemProtection Domain and Access Matrix Model -Operating System
Protection Domain and Access Matrix Model -Operating System
LalfakawmaKh
Ìý
Operating Systems Protection and Security
Operating Systems Protection and SecurityOperating Systems Protection and Security
Operating Systems Protection and Security
Sivakumar M
Ìý
S5-Authorization
S5-AuthorizationS5-Authorization
S5-Authorization
zakieh alizadeh
Ìý
Distributed Operating System Resource Security And Protection: Access and Flo...
Distributed Operating System Resource Security And Protection: Access and Flo...Distributed Operating System Resource Security And Protection: Access and Flo...
Distributed Operating System Resource Security And Protection: Access and Flo...
Aki Akshaya.D
Ìý
Protection and security of operating system
Protection and security of operating systemProtection and security of operating system
Protection and security of operating system
Abdullah Khosa
Ìý
resource security and protection in distributed system
resource security and protection in distributed systemresource security and protection in distributed system
resource security and protection in distributed system
sathiabama40
Ìý
Lucene solrrev documentlevelsecurity_rajanimaski_final
Lucene solrrev documentlevelsecurity_rajanimaski_finalLucene solrrev documentlevelsecurity_rajanimaski_final
Lucene solrrev documentlevelsecurity_rajanimaski_final
Rajani Maski
Ìý
Design for security in operating system
Design for security in operating systemDesign for security in operating system
Design for security in operating system
Bhagyashree Barde
Ìý
Chapter 14 - Protection
Chapter 14 - ProtectionChapter 14 - Protection
Chapter 14 - Protection
Wayne Jones Jnr
Ìý
A Novel methodology for handling Document Level Security in Search Based Appl...
A Novel methodology for handling Document Level Security in Search Based Appl...A Novel methodology for handling Document Level Security in Search Based Appl...
A Novel methodology for handling Document Level Security in Search Based Appl...
lucenerevolution
Ìý
unit 1access models _3.pptxscscsscscscsc
unit 1access models _3.pptxscscsscscscscunit 1access models _3.pptxscscsscscscsc
unit 1access models _3.pptxscscsscscscsc
zmulani8
Ìý
Sharing and security in Salesforce
Sharing and security in SalesforceSharing and security in Salesforce
Sharing and security in Salesforce
Saurabh Kulkarni
Ìý
Top school in noida
Top school in noidaTop school in noida
Top school in noida
Edhole.com
Ìý
Dataverse Permissions Demystified - PowerAddicts BE 11-2022.pptx
Dataverse Permissions Demystified - PowerAddicts BE 11-2022.pptxDataverse Permissions Demystified - PowerAddicts BE 11-2022.pptx
Dataverse Permissions Demystified - PowerAddicts BE 11-2022.pptx
Rebekka Aalbers-de Jong
Ìý
Chapter 7
Chapter 7Chapter 7
Chapter 7
Seth Nurul
Ìý
Oerating system project
Oerating system projectOerating system project
Oerating system project
Hira Gul
Ìý
L-3.1.1 (1).pptx
L-3.1.1 (1).pptxL-3.1.1 (1).pptx
L-3.1.1 (1).pptx
AnandYadav24579
Ìý
Authorization Pattern.pptx power point s
Authorization Pattern.pptx power point sAuthorization Pattern.pptx power point s
Authorization Pattern.pptx power point s
Coderkids
Ìý
Topic 7 access control
Topic 7 access controlTopic 7 access control
Topic 7 access control
Khawar Nehal khawar.nehal@atrc.net.pk
Ìý
SE Linux
SE LinuxSE Linux
SE Linux
primeteacher32
Ìý
Protection Domain and Access Matrix Model -Operating System
Protection Domain and Access Matrix Model -Operating SystemProtection Domain and Access Matrix Model -Operating System
Protection Domain and Access Matrix Model -Operating System
LalfakawmaKh
Ìý
Operating Systems Protection and Security
Operating Systems Protection and SecurityOperating Systems Protection and Security
Operating Systems Protection and Security
Sivakumar M
Ìý
S5-Authorization
S5-AuthorizationS5-Authorization
S5-Authorization
zakieh alizadeh
Ìý
Distributed Operating System Resource Security And Protection: Access and Flo...
Distributed Operating System Resource Security And Protection: Access and Flo...Distributed Operating System Resource Security And Protection: Access and Flo...
Distributed Operating System Resource Security And Protection: Access and Flo...
Aki Akshaya.D
Ìý
Protection and security of operating system
Protection and security of operating systemProtection and security of operating system
Protection and security of operating system
Abdullah Khosa
Ìý
resource security and protection in distributed system
resource security and protection in distributed systemresource security and protection in distributed system
resource security and protection in distributed system
sathiabama40
Ìý
Lucene solrrev documentlevelsecurity_rajanimaski_final
Lucene solrrev documentlevelsecurity_rajanimaski_finalLucene solrrev documentlevelsecurity_rajanimaski_final
Lucene solrrev documentlevelsecurity_rajanimaski_final
Rajani Maski
Ìý
Design for security in operating system
Design for security in operating systemDesign for security in operating system
Design for security in operating system
Bhagyashree Barde
Ìý
Chapter 14 - Protection
Chapter 14 - ProtectionChapter 14 - Protection
Chapter 14 - Protection
Wayne Jones Jnr
Ìý
A Novel methodology for handling Document Level Security in Search Based Appl...
A Novel methodology for handling Document Level Security in Search Based Appl...A Novel methodology for handling Document Level Security in Search Based Appl...
A Novel methodology for handling Document Level Security in Search Based Appl...
lucenerevolution
Ìý
unit 1access models _3.pptxscscsscscscsc
unit 1access models _3.pptxscscsscscscscunit 1access models _3.pptxscscsscscscsc
unit 1access models _3.pptxscscsscscscsc
zmulani8
Ìý
Sharing and security in Salesforce
Sharing and security in SalesforceSharing and security in Salesforce
Sharing and security in Salesforce
Saurabh Kulkarni
Ìý
Top school in noida
Top school in noidaTop school in noida
Top school in noida
Edhole.com
Ìý
Dataverse Permissions Demystified - PowerAddicts BE 11-2022.pptx
Dataverse Permissions Demystified - PowerAddicts BE 11-2022.pptxDataverse Permissions Demystified - PowerAddicts BE 11-2022.pptx
Dataverse Permissions Demystified - PowerAddicts BE 11-2022.pptx
Rebekka Aalbers-de Jong
Ìý
Chapter 7
Chapter 7Chapter 7
Chapter 7
Seth Nurul
Ìý
Oerating system project
Oerating system projectOerating system project
Oerating system project
Hira Gul
Ìý
L-3.1.1 (1).pptx
L-3.1.1 (1).pptxL-3.1.1 (1).pptx
L-3.1.1 (1).pptx
AnandYadav24579
Ìý
Authorization Pattern.pptx power point s
Authorization Pattern.pptx power point sAuthorization Pattern.pptx power point s
Authorization Pattern.pptx power point s
Coderkids
Ìý

Recently uploaded (20)

The Broccoli Dog's inner voice (look A)
The Broccoli Dog's inner voice (look A)The Broccoli Dog's inner voice (look A)
The Broccoli Dog's inner voice (look A)
merasan
Ìý
FESTIVAL: SINULOG & THINGYAN-LESSON 4.pptx
FESTIVAL: SINULOG & THINGYAN-LESSON 4.pptxFESTIVAL: SINULOG & THINGYAN-LESSON 4.pptx
FESTIVAL: SINULOG & THINGYAN-LESSON 4.pptx
DanmarieMuli1
Ìý
Mate, a short story by Kate Grenville.pptx
Mate, a short story by Kate Grenville.pptxMate, a short story by Kate Grenville.pptx
Mate, a short story by Kate Grenville.pptx
Liny Jenifer
Ìý
Principle and Practices of Animal Breeding || Boby Basnet
Principle and Practices of Animal Breeding || Boby BasnetPrinciple and Practices of Animal Breeding || Boby Basnet
Principle and Practices of Animal Breeding || Boby Basnet
Boby Basnet
Ìý
How to Manage Putaway Rule in Odoo 17 Inventory
How to Manage Putaway Rule in Odoo 17 InventoryHow to Manage Putaway Rule in Odoo 17 Inventory
How to Manage Putaway Rule in Odoo 17 Inventory
Celine George
Ìý
TPR Data strategy 2025 (1).pdf Data strategy
TPR Data strategy 2025 (1).pdf Data strategyTPR Data strategy 2025 (1).pdf Data strategy
TPR Data strategy 2025 (1).pdf Data strategy
Henry Tapper
Ìý
English 4 Quarter 4 Week 4 Classroom Obs
English 4 Quarter 4 Week 4 Classroom ObsEnglish 4 Quarter 4 Week 4 Classroom Obs
English 4 Quarter 4 Week 4 Classroom Obs
NerissaMendez1
Ìý
How to Configure Restaurants in Odoo 17 Point of Sale
How to Configure Restaurants in Odoo 17 Point of SaleHow to Configure Restaurants in Odoo 17 Point of Sale
How to Configure Restaurants in Odoo 17 Point of Sale
Celine George
Ìý
Blind Spots in AI and Formulation Science Knowledge Pyramid (Updated Perspect...
Blind Spots in AI and Formulation Science Knowledge Pyramid (Updated Perspect...Blind Spots in AI and Formulation Science Knowledge Pyramid (Updated Perspect...
Blind Spots in AI and Formulation Science Knowledge Pyramid (Updated Perspect...
Ajaz Hussain
Ìý
Year 10 The Senior Phase Session 3 Term 1.pptx
Year 10 The Senior Phase Session 3 Term 1.pptxYear 10 The Senior Phase Session 3 Term 1.pptx
Year 10 The Senior Phase Session 3 Term 1.pptx
mansk2
Ìý
How to Setup WhatsApp in Odoo 17 - Odoo ºÝºÝߣs
How to Setup WhatsApp in Odoo 17 - Odoo ºÝºÝߣsHow to Setup WhatsApp in Odoo 17 - Odoo ºÝºÝߣs
How to Setup WhatsApp in Odoo 17 - Odoo ºÝºÝߣs
Celine George
Ìý
South Hornsey: The Lost Local Authority that Merged with Stoke Newington by T...
South Hornsey: The Lost Local Authority that Merged with Stoke Newington by T...South Hornsey: The Lost Local Authority that Merged with Stoke Newington by T...
South Hornsey: The Lost Local Authority that Merged with Stoke Newington by T...
History of Stoke Newington
Ìý
Reordering Rules in Odoo 17 Inventory - Odoo ºÝºÝߣs
Reordering Rules in Odoo 17 Inventory - Odoo ºÝºÝߣsReordering Rules in Odoo 17 Inventory - Odoo ºÝºÝߣs
Reordering Rules in Odoo 17 Inventory - Odoo ºÝºÝߣs
Celine George
Ìý
Lesson Plan M1 2024 Lesson Plan M1 2024 Lesson Plan M1 2024 Lesson Plan M1...
Lesson Plan M1 2024 Lesson Plan M1 2024 Lesson Plan M1 2024 Lesson Plan M1...Lesson Plan M1 2024 Lesson Plan M1 2024 Lesson Plan M1 2024 Lesson Plan M1...
Lesson Plan M1 2024 Lesson Plan M1 2024 Lesson Plan M1 2024 Lesson Plan M1...
pinkdvil200
Ìý
How to Configure Flexible Working Schedule in Odoo 18 Employee
How to Configure Flexible Working Schedule in Odoo 18 EmployeeHow to Configure Flexible Working Schedule in Odoo 18 Employee
How to Configure Flexible Working Schedule in Odoo 18 Employee
Celine George
Ìý
TLE 7 - 3rd Topic - Hand Tools, Power Tools, Instruments, and Equipment Used ...
TLE 7 - 3rd Topic - Hand Tools, Power Tools, Instruments, and Equipment Used ...TLE 7 - 3rd Topic - Hand Tools, Power Tools, Instruments, and Equipment Used ...
TLE 7 - 3rd Topic - Hand Tools, Power Tools, Instruments, and Equipment Used ...
RizaBedayo
Ìý
Rass MELAI : an Internet MELA Quiz Prelims - El Dorado 2025
Rass MELAI : an Internet MELA Quiz Prelims - El Dorado 2025Rass MELAI : an Internet MELA Quiz Prelims - El Dorado 2025
Rass MELAI : an Internet MELA Quiz Prelims - El Dorado 2025
Conquiztadors- the Quiz Society of Sri Venkateswara College
Ìý
APM People Interest Network Conference - Tim Lyons - The neurological levels ...
APM People Interest Network Conference - Tim Lyons - The neurological levels ...APM People Interest Network Conference - Tim Lyons - The neurological levels ...
APM People Interest Network Conference - Tim Lyons - The neurological levels ...
Association for Project Management
Ìý
PUBH1000 Module 3: Public Health Systems
PUBH1000 Module 3: Public Health SystemsPUBH1000 Module 3: Public Health Systems
PUBH1000 Module 3: Public Health Systems
Jonathan Hallett
Ìý
Research & Research Methods: Basic Concepts and Types.pptx
Research & Research Methods: Basic Concepts and Types.pptxResearch & Research Methods: Basic Concepts and Types.pptx
Research & Research Methods: Basic Concepts and Types.pptx
Dr. Sarita Anand
Ìý
The Broccoli Dog's inner voice (look A)
The Broccoli Dog's inner voice (look A)The Broccoli Dog's inner voice (look A)
The Broccoli Dog's inner voice (look A)
merasan
Ìý
FESTIVAL: SINULOG & THINGYAN-LESSON 4.pptx
FESTIVAL: SINULOG & THINGYAN-LESSON 4.pptxFESTIVAL: SINULOG & THINGYAN-LESSON 4.pptx
FESTIVAL: SINULOG & THINGYAN-LESSON 4.pptx
DanmarieMuli1
Ìý
Mate, a short story by Kate Grenville.pptx
Mate, a short story by Kate Grenville.pptxMate, a short story by Kate Grenville.pptx
Mate, a short story by Kate Grenville.pptx
Liny Jenifer
Ìý
Principle and Practices of Animal Breeding || Boby Basnet
Principle and Practices of Animal Breeding || Boby BasnetPrinciple and Practices of Animal Breeding || Boby Basnet
Principle and Practices of Animal Breeding || Boby Basnet
Boby Basnet
Ìý
How to Manage Putaway Rule in Odoo 17 Inventory
How to Manage Putaway Rule in Odoo 17 InventoryHow to Manage Putaway Rule in Odoo 17 Inventory
How to Manage Putaway Rule in Odoo 17 Inventory
Celine George
Ìý
TPR Data strategy 2025 (1).pdf Data strategy
TPR Data strategy 2025 (1).pdf Data strategyTPR Data strategy 2025 (1).pdf Data strategy
TPR Data strategy 2025 (1).pdf Data strategy
Henry Tapper
Ìý
English 4 Quarter 4 Week 4 Classroom Obs
English 4 Quarter 4 Week 4 Classroom ObsEnglish 4 Quarter 4 Week 4 Classroom Obs
English 4 Quarter 4 Week 4 Classroom Obs
NerissaMendez1
Ìý
How to Configure Restaurants in Odoo 17 Point of Sale
How to Configure Restaurants in Odoo 17 Point of SaleHow to Configure Restaurants in Odoo 17 Point of Sale
How to Configure Restaurants in Odoo 17 Point of Sale
Celine George
Ìý
Blind Spots in AI and Formulation Science Knowledge Pyramid (Updated Perspect...
Blind Spots in AI and Formulation Science Knowledge Pyramid (Updated Perspect...Blind Spots in AI and Formulation Science Knowledge Pyramid (Updated Perspect...
Blind Spots in AI and Formulation Science Knowledge Pyramid (Updated Perspect...
Ajaz Hussain
Ìý
Year 10 The Senior Phase Session 3 Term 1.pptx
Year 10 The Senior Phase Session 3 Term 1.pptxYear 10 The Senior Phase Session 3 Term 1.pptx
Year 10 The Senior Phase Session 3 Term 1.pptx
mansk2
Ìý
How to Setup WhatsApp in Odoo 17 - Odoo ºÝºÝߣs
How to Setup WhatsApp in Odoo 17 - Odoo ºÝºÝߣsHow to Setup WhatsApp in Odoo 17 - Odoo ºÝºÝߣs
How to Setup WhatsApp in Odoo 17 - Odoo ºÝºÝߣs
Celine George
Ìý
South Hornsey: The Lost Local Authority that Merged with Stoke Newington by T...
South Hornsey: The Lost Local Authority that Merged with Stoke Newington by T...South Hornsey: The Lost Local Authority that Merged with Stoke Newington by T...
South Hornsey: The Lost Local Authority that Merged with Stoke Newington by T...
History of Stoke Newington
Ìý
Reordering Rules in Odoo 17 Inventory - Odoo ºÝºÝߣs
Reordering Rules in Odoo 17 Inventory - Odoo ºÝºÝߣsReordering Rules in Odoo 17 Inventory - Odoo ºÝºÝߣs
Reordering Rules in Odoo 17 Inventory - Odoo ºÝºÝߣs
Celine George
Ìý
Lesson Plan M1 2024 Lesson Plan M1 2024 Lesson Plan M1 2024 Lesson Plan M1...
Lesson Plan M1 2024 Lesson Plan M1 2024 Lesson Plan M1 2024 Lesson Plan M1...Lesson Plan M1 2024 Lesson Plan M1 2024 Lesson Plan M1 2024 Lesson Plan M1...
Lesson Plan M1 2024 Lesson Plan M1 2024 Lesson Plan M1 2024 Lesson Plan M1...
pinkdvil200
Ìý
How to Configure Flexible Working Schedule in Odoo 18 Employee
How to Configure Flexible Working Schedule in Odoo 18 EmployeeHow to Configure Flexible Working Schedule in Odoo 18 Employee
How to Configure Flexible Working Schedule in Odoo 18 Employee
Celine George
Ìý
TLE 7 - 3rd Topic - Hand Tools, Power Tools, Instruments, and Equipment Used ...
TLE 7 - 3rd Topic - Hand Tools, Power Tools, Instruments, and Equipment Used ...TLE 7 - 3rd Topic - Hand Tools, Power Tools, Instruments, and Equipment Used ...
TLE 7 - 3rd Topic - Hand Tools, Power Tools, Instruments, and Equipment Used ...
RizaBedayo
Ìý
Rass MELAI : an Internet MELA Quiz Prelims - El Dorado 2025
Rass MELAI : an Internet MELA Quiz Prelims - El Dorado 2025Rass MELAI : an Internet MELA Quiz Prelims - El Dorado 2025
Rass MELAI : an Internet MELA Quiz Prelims - El Dorado 2025
Conquiztadors- the Quiz Society of Sri Venkateswara College
Ìý
APM People Interest Network Conference - Tim Lyons - The neurological levels ...
APM People Interest Network Conference - Tim Lyons - The neurological levels ...APM People Interest Network Conference - Tim Lyons - The neurological levels ...
APM People Interest Network Conference - Tim Lyons - The neurological levels ...
Association for Project Management
Ìý
PUBH1000 Module 3: Public Health Systems
PUBH1000 Module 3: Public Health SystemsPUBH1000 Module 3: Public Health Systems
PUBH1000 Module 3: Public Health Systems
Jonathan Hallett
Ìý
Research & Research Methods: Basic Concepts and Types.pptx
Research & Research Methods: Basic Concepts and Types.pptxResearch & Research Methods: Basic Concepts and Types.pptx
Research & Research Methods: Basic Concepts and Types.pptx
Dr. Sarita Anand
Ìý

access-control-basics-murat-kantarcioglu.pdf

  • 1. UT DALLAS UT DALLAS Erik Jonsson School of Engineering & Computer Science FEARLESS engineering Access Control Basics Murat Kantarcioglu
  • 2. FEARLESS engineering Access Control - basic concepts • An access control system regulates the operations that can be executed on data and resources to be protected • Its goal is to control operations executed by subjects in order to prevent actions that could damage data and resources • Access control is typically provided as part of the operating system and of the database management system (DBMS)
  • 3. FEARLESS engineering Access Control - basic concepts Subject Access request Reference monitor Object • The very nature of access control suggests that there is an active subject requiring access to a passive object to perform some specific access operation. • A reference monitor grants or denies access • This fundamental and simple notion of access control is due to Lampson ------------------ B. Lampson. Protection. ACM Operating System Reviews, 8, 1974.
  • 4. FEARLESS engineering Access Control Mechanism • It is typically a software system implementing the access control function • It is usually part of other systems • The access control mechanism uses some access control policies to decide whether to grant or deny a subject access to a requested resource • We will refer to an access control system as system comprising an access control mechanism and all information required to take access control decisions (for example, access permissions)
  • 5. FEARLESS engineering Object • Anything that holds data, such as relations, directories, interprocess messages, network packets, I/O devices, or physical media • We often refer to objects, controlled by the access control system, as protection objects • Note that not all resources managed by a system need to be protected
  • 6. FEARLESS engineering Subject • An abstraction of any active entity that performs computation in the system • Subjects can be classified into: – users -- single individuals connecting to the system – groups -- sets of users – roles -- named collections of privileges / functional entities within the organization – processes -- executing programs on behalf of users • Relations may exist among the various types of subject
  • 7. FEARLESS engineering Access Operations - Access Modes • Operations that a subject can exercise on the protected objects in the system • Each type of operation corresponds to an access mode • The basic idea is that several different types of operation may be executed on a given type of object; the access control system must be able to control the specific type of operation • The most simple example of access modes is: – read look at the contents of an object – write change the contents of an object • In reality, there is a large variety of access modes • The access modes supported by an access control mechanism depend on the resources to be protected (read, write, execute, select, insert, update, delete, …) • Often an access control system uses modes with the same name for different types of object; the same mode can correspond to different operations when applied to different objects
  • 8. FEARLESS engineering Access Operations - Access Modes An example • Unix operating system – Access modes defined for files • read: reading from a file • write: writing to a file • execute: executing a (program) file – Access models defined for directories • read: list a directory contents • write: create or rename a file in a directory • execute: search a directory
  • 9. FEARLESS engineering Access Operations Access Permissions and Attributes • How does the reference monitor decides whether to give access or not? • Main approaches: – It uses access permissions • Typical of discretionary access control (DAC) models – It uses information (often referred to as attributes) concerning subjects and objects • Typical of multilevel access control (MAC) models • More innovative approaches have been developed where access permissions can be also expressed in terms of object and subject attributes and even context parameters
  • 10. FEARLESS engineering Access Operations Access Permissions Subject Access request Reference monitor Object Access Permissions Access Control Policies
  • 11. FEARLESS engineering Access Permissions • Access permissions, also called authorizations, are expressed in terms of subjects, objects, and access modes • From a conceptual point of view an access permission is a tuple <s, o, a> where – s is a subject – o is an object – a is an access mode It states that subject s has the permission to execute operation a on object o We also say that s has access right a on object o • Example: the access permission <Bob, Read, F1> states that Bob has the permission to read file F1
  • 12. FEARLESS engineering Access Permissions • Subjects, objects, and access modes can be organized into hierarchies • The semantics of the hierarchy depends on the domain • The use of hierarchies has two important advantages: – It reduces the number of permissions that need to be entered into the access control system, thus reducing administration costs – Combined with negative authorizations (to be discussed later on), it supports the specification of exceptions
  • 14. FEARLESS engineering Role Hierarchy senior role junior role technical manager programmer
  • 15. FEARLESS engineering Group Hierarchy group group member GROUP MEMBERSHIP University CS Dept Suppose that the group CS department has 200 members and the University group 5000 members; suppose we have the policy that the department calendar can be read to all members of the University and written only by the members of CS; these policies can be encoded into two access permissions of the form: <University, calendar, Read> <CS Dept, calendar, Write>
  • 16. FEARLESS engineering Access Mode Hierarchy mode implied mode SUBSUMPTION write read
  • 17. FEARLESS engineering Groups and Negative Permissions • Groups can be seen as an intermediate level between users and objects • An example of an ideal world where all access permissions are mediated by groups g1 g2 s1 s2 s3 s4 s5 Users Groups Objects o1 o2 o3 o4 o5 o6
  • 18. FEARLESS engineering Groups and Negative Permissions • Often access control policies have special cases where is proves convenient to give some user a permission for an object directly or deny a user a permission that it would normally derive from its membership in some group • A negative permission specifies an operation that a subject is not allowed to perform • Representing negative permissions requires extending our simple tuple model with an additional component: <s, o, a, sign> where sign ÃŽ{+, -}
  • 19. FEARLESS engineering Groups and Negative Permissions An example in which not all access permissions are mediated through groups Users Groups Objects g1 s1 s2 s3 o1 o2 o3 o4 o5
  • 20. FEARLESS engineering Ownership and Administration • A key question when dealing with access control is who specifies which subjects can access which objects for which operations • In the case of permissions, this means specifying which are the subjects that can enter permissions
  • 21. FEARLESS engineering Ownership and Administration Two basic options • Discretionary approach – the owner of a resource decrees who is allowed to have access – But then: who is the owner of a resource? • Mandatory approach – a system-wide policy decrees who is allowed to have access
  • 22. FEARLESS engineering Access Control Structures The most well known access control structures for DAC models are based on the notion of Access Control Matrix. Let: - S be a set of subjects - O be a set of objects - A be a set of access modes An access control matrix M on S, O, and A is defined as M = (Mso)s ∊ S, o ∊ O with Mso ⊂ A The entry Mso specifies the set of access operations subject s can perform on object o.
  • 23. FEARLESS engineering Access Control Structures Example {execute, read, write} - {read, write} Bill {execute, read} {execute} - Alice fun.dir edit.exe bill.doc
  • 24. FEARLESS engineering Access Control Structures Access Control Lists and Capabilities • Directly implementing access control matrices is quite inefficient, because in most cases these matrices are sparse • Therefore two main implementations have been developed – Access control lists • Used in DBMS and Operating Systems – Capabilities
  • 25. FEARLESS engineering Basic Operations in Access Control • Grant permissions – Inserting values in the matrix’s entries • Revoke permissions – Remove values from the matrix’s entries • Check permissions – Verifying whether the entry related to a subject s and an object o contains a given access mode
AboutCopyright
© 2025 ºÝºÝߣ