Poster: APETEEt -- Secure Enforcement of ABAC Policies using Trusted Execution Environment

Proceedings of the 28th ACM Symposium on Access Control Models and Technologies Pub Date : 2023-05-24 DOI:10.1145/3589608.3595079

Pritkumar Godhani, Rahul Bharadhwaj, S. Sural

引用次数: 0

Abstract

We introduce a novel framework for efficient enforcement of Attribute-Based Access Control (ABAC) policies using trusted execution environment. An ABAC policy is represented in the form of a height-balanced tree constructed and deployed in the trusted enclave. Both the policy and its enforcement are thus protected against intentional or accidental changes. The modular design of our framework enables any application to use its APIs for building secure ABAC systems. Our initial experiments show promising results.

查看原文本刊更多论文

海报:APETEEt——使用可信执行环境的ABAC策略的安全执行

我们引入了一个新的框架，利用可信的执行环境有效地实施基于属性的访问控制(ABAC)策略。ABAC策略以高度平衡树的形式表示，该树构造并部署在可信飞地中。因此，政策及其执行都可以防止有意或意外的变化。我们框架的模块化设计使任何应用程序都可以使用其api来构建安全的ABAC系统。我们的初步实验显示出有希望的结果。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the 28th ACM Symposium on Access Control Models and Technologies

自引率

0.00%

发文量