On the Safety of Enterprise Policy Deployment
نویسندگان
چکیده
Enterprise policy management is challenging and errorprone. Compared to existing work that focused on analyzing misconfigurations, our work is the first to address the issues that arose during policy deployment, i.e., effecting policy changes. In this paper, we demonstrate that naive approaches to policy deployment can easily create security vulnerabilities, such as granting access of sensitive resources to unprivileged users or temporarily allowing malicious traffic to critical network infrastructure. To systematically solve this problem, we formally define secure and insecure intermediate states, and further propose an efficient algorithm to find a deployment procedure without insecure intermediate states. We implemented and evaluated our algorithm on Group Policy framework, while only harnessing existing support and requiring no modification to the current infrastructure. Our evaluation shows that our solution addsminimal overhead to the overall deployment time while provably eliminating insecure intermediate states.
منابع مشابه
P2P Network Trust Management Survey
Peer-to-peer applications (P2P) are no longer limited to home users, and start being accepted in academic and corporate environments. While file sharing and instant messaging applications are the most traditional examples, they are no longer the only ones benefiting from the potential advantages of P2P networks. For example, network file storage, data transmission, distributed computing, and co...
متن کاملEvaluating the Performance of Health, Safety, & Environment Management System (HSE-MS) in Dam Design and Construction Projects in Tehran Industrial Group based on EFQM Enterprise Excellence Model
Introduction: Comprehensive and reliable performance evaluation of organizations has always been one of the main concerns of stakeholders and managers of organizations. Performance evaluation can raise awareness of the progress made in improving the performance of any organizations, especially in the field of health, safety, and environment (HSE) and thus, create the necessary motivation and op...
متن کاملCreating a Better Patient Safety Culture in Taiwan: The Viewpoints of Physicians and Registered Nurses
Background: Patient safety culture in healthcare organizations has become an important issue globally for improving medical services. In 2016, Taiwan’s National Health Insurance (NHI) system covered 99.6% of Taiwan’s population. With the enhancement of medical quality, patients expect medical service providers to care more about safety and medical service. Understanding physici...
متن کاملManaging Security in Object-based Distributed Systems Using Ponder
Security management involves specification and deployment of access control policies as well as activities such as registration of users or logging and auditing events for dealing with access to critical resources or security violations. The management actions to be performed when an event occurs depend on the enterprise policy. Reusable composite policy specifications are important to cater fo...
متن کاملNature of radioactive contamination in soils of the pine forest in the territory adjacent to Semipalatinsk test site
ABSTRACT Background: This work investigated radioactive contamination in soils of the pine forest in the territory adjacent to Semipalatinsk test site. Materials and Methods: Thirty samples from the soil were collected from six different a soil profile was laid out (research areas). Activity concentrations of 137Cs and 241Am were determined using a Canberra GX-2020 solid-state gamma-spectromet...
متن کامل