Poster: APETEEt - Secure Enforcement of ABAC Policies using Trusted Execution Environment

被引：0

作者：

Godhani, Pritkumar ^{[1
]}

Bharadhwaj, Rahul ^{[1
]}

Sural, Shamik ^{[1
]}

机构：

[1] Indian Inst Technol, Kharagpur, W Bengal, India

来源：

PROCEEDINGS OF THE 28TH ACM SYMPOSIUM ON ACCESS CONTROL MODELS AND TECHNOLOGIES, SACMAT 2023 | 2023年

关键词：

ABAC; Trusted Execution Environment; Secure Policy Enforcement;

D O I：

10.1145/3589608.3595079

中图分类号：

TP301 [理论、方法];

学科分类号：

081202 ;

摘要：

We introduce a novel framework for efficient enforcement of Attribute-Based Access Control (ABAC) policies using trusted execution environment. An ABAC policy is represented in the form of a height-balanced tree constructed and deployed in the trusted enclave. Both the policy and its enforcement are thus protected against intentional or accidental changes. The modular design of our framework enables any application to use its APIs for building secure ABAC systems. Our initial experiments show promising results.

引用

页码：47 / 49

页数：3

共 8 条

[1]

Djoko Judicael Briand, 2020, Ph. D. Dissertation

[2] MOSE: Practical Multi-User Oblivious Storage via Secure Enclaves [J].

Hoang, Thang ;

Behnia, Rouzbeh ;

Jang, Yeongjin ;

Yavuz, Attila A. .

PROCEEDINGS OF THE TENTH ACM CONFERENCE ON DATA AND APPLICATION SECURITY AND PRIVACY, CODASPY 2020, 2020, :17-28

[3]

Hu V., 2019, Tech. Rep

[4]

Intel Corporation, 2016, Intel SGX SDK

[5]

Intel Corporation, 2021, 12th Generation Intel Core Processors Datasheet

[6]

Kumar Sandeep, 2021, RAID '21: 24th International Symposium on Research in Attacks, Intrusions and Defenses, P91, DOI 10.1145/3471621.3471840

[7] PolTree: A Data Structure for Making Efficient Access Decisions in ABAC [J].

Nath, Ronit ;

Das, Saptarshi ;

Sural, Shamik ;

Vaidya, Jaideep ;

Atluri, Vijay .

PROCEEDINGS OF THE 24TH ACM SYMPOSIUM ON ACCESS CONTROL MODELS AND TECHNOLOGIES (SACMAT '19), 2019, :25-35

[8]

Severinsen Kristoffer Myrseth, 2017, Master's thesis

← 1 →