on the expressive power of the unary transformation model by ravi sandhu srinivas ganta
DESCRIPTION
On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta Center for Secure Information Systems George Mason University. Outline. • Introduction / Motivation • Transformation Model • Example • Expressive Power • Conclusion. NMT. - PowerPoint PPT PresentationTRANSCRIPT
![Page 1: On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta](https://reader033.vdocument.in/reader033/viewer/2022051517/568151ff550346895dc03f1c/html5/thumbnails/1.jpg)
On the Expressive Power of the UnaryTransformation Model
by
Ravi SandhuSrinivas Ganta
Center for Secure Information SystemsGeorge Mason University
![Page 2: On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta](https://reader033.vdocument.in/reader033/viewer/2022051517/568151ff550346895dc03f1c/html5/thumbnails/2.jpg)
Outline
• Introduction / Motivation
• Transformation Model
• Example
• Expressive Power
• Conclusion
![Page 3: On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta](https://reader033.vdocument.in/reader033/viewer/2022051517/568151ff550346895dc03f1c/html5/thumbnails/3.jpg)
NMT
• Can enforce lots of diverse policies
• Has simple implementation
• Cannot adequately express the document release example
(Sandhu & Suri, Oakland 92)
![Page 4: On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta](https://reader033.vdocument.in/reader033/viewer/2022051517/568151ff550346895dc03f1c/html5/thumbnails/4.jpg)
Document Release Example
• A scientist prepares a document and can release it only after getting approval from a patent-officer.
![Page 5: On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta](https://reader033.vdocument.in/reader033/viewer/2022051517/568151ff550346895dc03f1c/html5/thumbnails/5.jpg)
Transformation Model (TRM)
• Protection state in TRM is viewed in terms of the familiar access matrix
• Protection state of the system is given by the tuple (OBJ, SUB, t, AM)
• The specification for changing the protection state is given by an authorization scheme
![Page 6: On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta](https://reader033.vdocument.in/reader033/viewer/2022051517/568151ff550346895dc03f1c/html5/thumbnails/6.jpg)
ACCESS MATRIX
subjects
objects
u : s
f : o
r wown
![Page 7: On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta](https://reader033.vdocument.in/reader033/viewer/2022051517/568151ff550346895dc03f1c/html5/thumbnails/7.jpg)
Authorization Scheme
• A set of access rights R.
• Disjoint sets of subject and object types, TS and TO, respectively.
• A collection of three classes of state changing commands: Transformation commands, Create commands and Destroy commands
![Page 8: On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta](https://reader033.vdocument.in/reader033/viewer/2022051517/568151ff550346895dc03f1c/html5/thumbnails/8.jpg)
Transformation Commands
Command name (S1:s1,....Sn:sn, O:o) if predicate then sequence of primitive operations enter/delete r into [S, O] end
Command transfer-ownership (S1:s, S2:s, O:o) if own [S1,O]
thenenter own in [S2,O]deleterown from [S1,O]
end
Example:
![Page 9: On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta](https://reader033.vdocument.in/reader033/viewer/2022051517/568151ff550346895dc03f1c/html5/thumbnails/9.jpg)
Create Commands
Command create (S1:s1, O:o) create object O enter own in [S1, O] end
![Page 10: On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta](https://reader033.vdocument.in/reader033/viewer/2022051517/568151ff550346895dc03f1c/html5/thumbnails/10.jpg)
Destroy Commands
Command destroy (S1:s1, O:o) destroy object O end
if own [S1,O] then
![Page 11: On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta](https://reader033.vdocument.in/reader033/viewer/2022051517/568151ff550346895dc03f1c/html5/thumbnails/11.jpg)
• A set of rights R
• A set of disjoint subject and object types TS and TO respectively
• A set of state-changing transformation, creation and destroy commands
• The initial state
TRM SUMMARY
![Page 12: On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta](https://reader033.vdocument.in/reader033/viewer/2022051517/568151ff550346895dc03f1c/html5/thumbnails/12.jpg)
Document Release Example
• A document cannot be released by a scientist without first obtaining approval from a patent-officer.
• Types = { sci, po, doc}
• Rights = {read, write, own, review, pat-ok, pat-reject, release}
![Page 13: On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta](https://reader033.vdocument.in/reader033/viewer/2022051517/568151ff550346895dc03f1c/html5/thumbnails/13.jpg)
• Command create-doc (S:sci, O:doc) create object O enter own in [S,O] enter read in [S,O] enter write in [S,O] end
Create Command
![Page 14: On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta](https://reader033.vdocument.in/reader033/viewer/2022051517/568151ff550346895dc03f1c/html5/thumbnails/14.jpg)
Document Release Example
S: sci
P: po
O :doc
ownreadwrite
![Page 15: On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta](https://reader033.vdocument.in/reader033/viewer/2022051517/568151ff550346895dc03f1c/html5/thumbnails/15.jpg)
• command rqst-review (S:sci, P:po, O:doc) if own [S,O] then enter review in [P,O] delete write from [S,O] end
write [S,O]
Request Review
![Page 16: On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta](https://reader033.vdocument.in/reader033/viewer/2022051517/568151ff550346895dc03f1c/html5/thumbnails/16.jpg)
Get-Approval/Rejection
• command get-approval (S:sci, P:po, O:doc) if own [S,O] then enter pat-ok in [S,O] delete review from [P,O] end
review [P,O]
• command get-rejection (S:sci, P:po, O:doc) if own [S,O] then enter pat-reject in [S,O] delete review from [P,O] end
review [P,O]
![Page 17: On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta](https://reader033.vdocument.in/reader033/viewer/2022051517/568151ff550346895dc03f1c/html5/thumbnails/17.jpg)
Release / Revise Document
• command release-doc (S:sci, O:doc) if pat-ok [S,O] then enter release in [S,O] delete pat-ok from [S,O] end
• command revise-doc (S:sci, O:doc) if pat-reject [S,O] then enter write in [S,O] delete pat-reject from [S,O] end
![Page 18: On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta](https://reader033.vdocument.in/reader033/viewer/2022051517/568151ff550346895dc03f1c/html5/thumbnails/18.jpg)
Expressive Power
TRM BTRM
• The document release example has commands which test for atmost two cells of the matrx.
• Binary Transformation Model
•
(Sandhu & Ganta, Oakland 94)
![Page 19: On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta](https://reader033.vdocument.in/reader033/viewer/2022051517/568151ff550346895dc03f1c/html5/thumbnails/19.jpg)
Expressive Power
• UTRM TRM
• UTRM BTRM
?
?
![Page 20: On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta](https://reader033.vdocument.in/reader033/viewer/2022051517/568151ff550346895dc03f1c/html5/thumbnails/20.jpg)
UTRM BTRM
• requires every subject in the simulation to be of a different type.
• Esorics 94
![Page 21: On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta](https://reader033.vdocument.in/reader033/viewer/2022051517/568151ff550346895dc03f1c/html5/thumbnails/21.jpg)
UTRM BTRM
• if every subject cannot be of a different type
![Page 22: On the Expressive Power of the Unary Transformation Model by Ravi Sandhu Srinivas Ganta](https://reader033.vdocument.in/reader033/viewer/2022051517/568151ff550346895dc03f1c/html5/thumbnails/22.jpg)
Conclusion
• UTRM BTRM impractical simulation in general
• UTRM < BTRM for all practical purposes