AUTOCROSSCLUBGEFFEN.NL Library > Nonfiction 12 > Download PDF by Helmut Petritsch: Break-Glass: Handling Exceptional Situations in Access

Download PDF by Helmut Petritsch: Break-Glass: Handling Exceptional Situations in Access

By Helmut Petritsch

ISBN-10: 3658073640

ISBN-13: 9783658073640

ISBN-10: 3658073659

ISBN-13: 9783658073657

Helmut Petritsch describes the 1st holistic method of Break-Glass which covers the complete life-cycle: from entry regulate modeling (pre-access), to logging the security-relevant process country in the course of Break-Glass accesses (at-access), and the automatic research of Break-Glass accesses (post-access). Break-Glass permits clients to override defense regulations in remarkable occasions. whereas a number of Break-Glass versions particular to given entry regulate versions have already been mentioned in learn (e.g., extending RBAC with Break-Glass), the writer introduces a common Break-Glass version. The provided version is widespread either within the experience that it permits to version current Break-Glass methods and that it's autonomous of the underlying entry keep watch over model.

Show description

Read Online or Download Break-Glass: Handling Exceptional Situations in Access Control PDF

Similar nonfiction_12 books

Lie Algebras and Related Topics: Proceedings by Georgia Benkart, J. Marshall Osborn PDF

The 1984 class of the finite-dimensional constrained basic Lie algebras over an algebraically closed box of attribute $p>7$ supplied the impetus for a unique yr of Lie Algebras, held on the college of Wisconsin, Madison, in the course of 1987-88. paintings performed through the specified yr and in a while positioned researchers a lot nearer towards an answer of the long-standing challenge of making a choice on the finite-dimensional uncomplicated Lie algebras over an algebraically closed box of attribute $p>7$.

Additional resources for Break-Glass: Handling Exceptional Situations in Access Control

Sample text

3 is based on our publication [27] and defines privileges only with positive, i. 4 which also allows to define constraining, i. , deny, permissions. 1 Requirements of Break-Glass The here presented requirements are the consolidation of requirements and properties of existing Break-Glass approaches presented in chapter 8, and legal regulations such as Health Insurance Portability and Accountability Act (hipaa) [82]. The generic idea of Break-Glass is to empower users to decide if a denied access should be overridden, e.

For example, let us assume a set of classifications: top secret (CT S ), secret (CS ), confidential (CC ), and unclassified (CU ) with CT S > CS > CC > CU . Furthermore assume categories for Air Force (KA ), Navy (KN ), and Coast Guard (KC ), i. , C = {KA , KN , KC }. A security level (CS , {KA , KC }) dominates security levels where both classification and categories are dominated, e. , (CS , {KA }), (CC , {KA , KC }), or (CS , {KA , KC }), but does hence neither dominate (CT S , {KA , KC }) nor 26 2 Background (CC , {KN , KC }).

Break-Glass aims to overcome the problem with unpredictable situations, but this does not invalidate the need to define accesses that may or may not occur, e. , as they do not help in master the exception, or the potential damage is too large. Exceptional privileges are intended to reflect situations where this trade-off cannot be decided at design time: Break-Glass is an exception mechanism for situations where no definite permit or deny decision can be found. This requires that it has to be possible to separate what is permitted, what could be permitted in an exceptional situation and what should never be permitted.

Download PDF sample

Break-Glass: Handling Exceptional Situations in Access Control by Helmut Petritsch


by Brian
4.2

Rated 4.40 of 5 – based on 37 votes