24
There and back again A history of access control systems Malaysia Open Source Software Conference, 2010 Sam Moffatt
![Page 1: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/1.jpg)
There and back again
A history of access control systems
Malaysia Open Source Software Conference, 2010
Sam Moffatt
![Page 2: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/2.jpg)
A history of access control 2
About Me
Sam Moffatt [ pasamio ]Development Co-ordinator, Joomla!Systems Co-ordinator, USQMaster of Computing Student, USQ
@Joomla: Joomla! Installer and Update Systems@USQ: ePrints, VUFind
Master of Computing, topic: Access control in semantic information systems→
![Page 3: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/3.jpg)
A history of access control 3
Access Control
Access Control?
![Page 4: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/4.jpg)
A history of access control 4
Access Control
![Page 5: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/5.jpg)
A history of access control 5
MULTICS
What's a MULTICS?
![Page 6: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/6.jpg)
A history of access control 6
MULTICS
![Page 7: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/7.jpg)
A history of access control 7
MULTICS
![Page 8: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/8.jpg)
A history of access control 8
MULTICS
Hardware protectionAND
Software protection
![Page 9: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/9.jpg)
A history of access control 9
MULTICS
![Page 10: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/10.jpg)
A history of access control 10
MULTICS Hardware Protection
![Page 11: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/11.jpg)
A history of access control 11
MULTICS Software Protection
UNIX Access Controls
![Page 12: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/12.jpg)
A history of access control 12
MULTICS Software Protection
Mandatory access control
![Page 13: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/13.jpg)
A history of access control 13
DoD Orange Book
![Page 14: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/14.jpg)
A history of access control 14
DoD Orange Book
• DoD Orange Book was the standard for system security
• Written by NCSC which was directed by a former MULTICS developer
• Orange Book had a distinct MULTICS feel to its design
• Classified computer security from D (minimal protection), C (discretionary protection), B (mandatory protection) and A (verified protection)
![Page 15: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/15.jpg)
A history of access control 15
DoD Orange Book
• MULTICS was rated at B2• Windows NT achieved C1
![Page 16: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/16.jpg)
A history of access control 16
Windows NT
![Page 17: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/17.jpg)
A history of access control 17
Windows NT
• Introduced discretionary access control to Windows:– The ability to grant access to files– Inheritance for permissions– Windows 2000 adds the ability to explicitly
deny access
![Page 18: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/18.jpg)
A history of access control 18
Windows NT
• Windows defined three classes of permissions:– General permissions
• Read, Write, Execute
– Standard Permissions• Synchronise, Write DAC, Write Owner, Read
Control, Delete
– Specific Permissions• Dependent on the individual type (e.g. file/folder)
![Page 19: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/19.jpg)
A history of access control 19
Windows NT
![Page 20: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/20.jpg)
A history of access control 20
File system security family tree
![Page 21: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/21.jpg)
A history of access control 21
Windows NT
• Windows' security model has heavily influenced:– POSIX ACL– NFSv4 ACL's– ZFS– HFS
![Page 22: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/22.jpg)
A history of access control 22
Conclusion
![Page 23: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/23.jpg)
A history of access control 23
Q&A
Questions and Answers
![Page 24: There and back again - USQ ePrintseprints.usq.edu.au/8331/1/Moffatt_Joomla_History_Slides.pdfA history of access control 2 About Me Sam Moffatt [ pasamio ] Development Co-ordinator,](https://reader034.documents.pub/reader034/viewer/2022043021/5f3d01e6f8652946ba785c2a/html5/thumbnails/24.jpg)
A history of access control 24
Slides
• These slides available on conf.oss.my• Also available on USQ ePrints:
– http://eprints.usq.edu.au/8331
• My other papers/presentations:– http://eprints.usq.edu.au/profile/404
