Data and Applications Security Developments and DirectionsObjective of the UnitOutline of Part I: Information SecurityOperating System SecurityMandatory SecurityCovert Channel ExampleNetwork SecurityData Security: Access ControlSteps to Designing a Secure SystemProduct EvaluationSecurity Threats to Web/E-commerceOther Security TechnologiesOutline of Part II: Data ManagementAn Example Database SystemMetadataFunctional ArchitectureDBMS Design IssuesTypes of Database SystemsRelational Database: ExampleExample Class HierarchyExample Composite ObjectDistributed Database SystemData DistributionInteroperability of Heterogeneous Database SystemsDifferent Data ModelsFederated Database ManagementFederated Data and Policy ManagementOutline of Part I: Information ManagementWhat is Information Management?Data WarehouseData MiningMultimedia Information ManagementImage Processing: Example: Change Detection:Semantic WebKnowledge Management ComponentsData and Applications Security Developments and DirectionsDr. Bhavani ThuraisinghamThe University of Texas at DallasLecture #2Supporting TechnologiesAugust 26, 2009Objective of the UnitThis unit will provide an overview of the supporting technologiesOutline of Part I: Information SecurityOperating Systems SecurityNetwork SecurityDesigning and Evaluating SystemsWeb SecurityOther Security TechnologiesOperating System SecurityAccess Control-Subjects are Processes and Objects are Files-Subjects have Read/Write Access to Objects-E.g., Process P1 has read acces to File F1 and write access to File F2Capabilities-Processes must presses certain Capabilities / Certificates to access certain files to execute certain programs-E.g., Process P1 must have capability C to read file FMandatory SecurityBell and La Padula Security Policy-Subjects have clearance levels, Objects have sensitivity levels; clearance and sensitivity levels are also called security levels-Unclassified < Confidential < Secret < TopSecret-Compartments are also possible -Compartments and Security levels form a partially ordered latticeSecurity Properties-Simple Security Property: Subject has READ access to an object of the subject’s security level dominates that of the objects-Star (*) Property: Subject has WRITE access to an object if the subject’s security level is dominated by that of the objects\Covert Channel ExampleTrojan horse at a higher level covertly passes data to a Trojan horse at a lower levelExample:-File Lock/Unlock problem-Processes at Secret and Unclassified levels collude with one another-When the Secret process lock a file and the Unclassified process finds the file locked, a 1 bit is passed covertly-When the Secret process unlocks the file and the Unclassified process finds it unlocked, a 1 bit is passed covertly-Over time the bits could contain sensitive dataNetwork SecuritySecurity across all network layers-E.g., Data Link, Transport, Session, Presentation, ApplicationNetwork protocol security-Ver5ification and validation of network protocolsIntrusion detection and prevention-Applying data mining techniquesEncryption and CryptographyAccess control and trust policiesOther Measures-Prevention from denial of service, Secure routing, - - -Data Security: Access ControlAccess Control policies were developed initially for file systems-E.g., Read/write policies for filesAccess control in databases started with the work in System R and Ingres Projects-Access Control rules were defined for databases, relations, tuples, attributes and elements-SQL and QUEL languages were extended GRANT and REVOKE StatementsRead access on EMP to User group A Where EMP.Salary < 30K and EMP.Dept <> Security-Query Modification: Modify the query according to the access control rulesRetrieve all employee information where salary < 30K and Dept is not SecuritySteps to Designing a Secure SystemRequirements, Informal Policy and modelFormal security policy and modelSecurity architecture-Identify security critical components; these components must be trustedDesign of the systemVerification and ValidationProduct EvaluationOrange Book-Trusted Computer Systems Evaluation CriteriaClasses C1, C2, B1, B2, B3, A1 and beyond-C1 is the lowest level and A1 the highest level of assurance-Formal methods are needed for A1 systems Interpretations of the Orange book for Networks (Trusted Network Interpretation) and Databases (Trusted Database Interpretation)Several companion documents -Auditing, Inference and Aggregation, etc. Many products are now evaluated using the federal CriteriaSecurity Threats to Web/E-commerceSecurityThreats andViolationsAccessControlViolationsIntegrityViolationsFraudDenial ofService/InfrastructureAttacksSabotageConfidentialityAuthenticationNonrepudiationViolationsOther Security TechnologiesMiddleware SecurityInsider Threat AnalysisRisk ManagementTrust and EconomicsBiometricsSecure Voting Machines- - - - -Outline of Part II: Data ManagementConcepts in database systemsTypes of database systemsDistributed Data ManagementHeterogeneous database integrationFederated data managementAn Example Database SystemDatabaseDatabase Management SystemApplicationProgramsUsersAdapted from C. J. Date, Addison Wesley, 1990MetadataMetadata describes the data in the database-Example: Database D consists of a relation EMP with attributes SS#, Name, and SalaryMetadatabase stores the metadata -Could be physically stored with the databaseMetadatabase may also store constraints and administrative informationMetadata is also referred to as the schema or data dictionaryFunctional ArchitectureUser Interface ManagerQueryManagerTransaction ManagerSchema(Data Dictionary)Manager (metadata)Security/IntegrityManagerFileManagerDiskManagerData ManagementStorage ManagementDBMS Design IssuesQuery Processing-Optimization techniquesTransaction Management-Techniques for concurrency control and recoveryMetadata Management-Techniques for querying and updating the metadatabaseSecurity/Integrity Maintenance-Techniques for processing integrity constraints and enforcing access control rulesStorage management-Access methods and index strategies for efficient access to the databaseTypes of Database SystemsRelational Database SystemsObject Database SystemsDeductive Database SystemsOther-Real-time, Secure, Parallel, Scientific, Temporal, Wireless, Functional,
View Full Document