CAREER: Tolerating Access Control Misconfiguration

职业：容忍访问控制错误配置

• 批准号: 0747283
• 负责人: Landon Cox
• 金额: $ 45万
• 依托单位: Duke University
• 依托单位国家: 美国
• 项目类别: Continuing Grant
• 财政年份: 2008
• 资助国家: 美国
• 起止时间: 2008-09-01 至 2013-08-31
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=0747283&HistoricalAwards=false
• 关键词: CAREER; Tolerating; Access; Control; Misconfiguration

Access control is a multi-faceted area that has been advanced by a wide range of computer science research communities including programming languages, human-computer interaction, computerarchitecture, and operating systems. In general, this body of work has either sought to improve the expressiveness of access control logic or introduce novel mechanisms for enforcing policies. Eachapproach relies on a human operator or programmer to manually specify access control policies which are then enforced by a trusted reference monitor. Unfortunately, policy specification is often an error-prone process and can lead to damaging breaches of confidentiality due toaccess control misconfiguration. This work takes a three-phased approach to mitigating the effects of access control misconfiguration: 1) develop heuristics and models of proper access control enforcement, 2) design and implement system monitoring mechanisms capable of automatically identifying suspicious sharing patterns, and 3) evaluate the effectiveness of these heuristics and implementations through user studies and honeypots. These activities target both ubiquitousInternet systems such as the web and email as well as emerging mobile systems such as mobile social networks and mobile banking.

访问控制是一个多方面的领域，已经被广泛的计算机科学研究团体所推进，包括编程语言，人机交互，计算机体系结构和操作系统。 在一般情况下，这一机构的工作要么试图提高访问控制逻辑的表现力或引入新的机制，执行政策。 每种方法都依赖于操作员或程序员手动指定访问控制策略，然后由可信的引用监视器强制执行。 不幸的是，策略规范通常是一个容易出错的过程，并且由于访问控制配置错误，可能导致破坏性的机密性破坏。 这项工作采取了三个阶段的方法来减轻访问控制配置错误的影响：1）开发适当的访问控制执行的策略和模型，2）设计和实现能够自动识别可疑共享模式的系统监控机制，以及3）通过用户研究和蜜罐评估这些策略和实现的有效性。 这些活动的目标既包括网络和电子邮件等无处不在的互联网系统，也包括移动的社交网络和移动的银行业务等新兴的移动的系统。