Proactive risk assessment for preventing attribute-forgery attacks to ABAC policies

Carlos E. Rubio-Medrano, Luis Claramunt, Shaishavkumar Jogani, Gail Joon Ahn

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

Recently, the use of well-defined, security-relevant pieces of runtime information, a.k.a., attributes, has emerged as a convenient paradigm for writing, enforcing, and maintaining authorization policies, allowing for extended flexibility and convenience. However, attackers may try to bypass such policies, along with their enforcement mechanisms, by maliciously forging the attributes listed on them, e.g., by compromising the attribute sources : operative systems, software modules, remote services, etc., thus gaining unintended access to protected resources as a result. In such a context, performing a proper risk assessment of authorization policies, taking into account their inner structure: rules, attributes, combining algorithms, etc., along with their corresponding sources, becomes highly convenient to overcome \emphzero-day vulnerabilities, before they can be later exploited by attackers. With this in mind, we introduce \toolname, an automated risk assessment framework for authorization policies, which, besides being inspired by well-established techniques for vulnerability analysis such as symbolic execution, also introduces the very first approach for proactively assessing risks in the context of a series of attacks based on unintended attribute manipulation via forgery. We validate our approach by resorting to a set of case studies we performed on both real-life policies originally written in the English language, as well as a set of policies obtained from the literature, which show not only the convenience of our approach for risk assessment, but also reveal that some of those policies are vulnerable to attribute-forgery attacks by just compromising one or two of their attributes.

Original languageEnglish (US)
Title of host publicationSACMAT 2020 - Proceedings of the 25th ACM Symposium on Access Control Models and Technologies
PublisherAssociation for Computing Machinery
Pages131-144
Number of pages14
ISBN (Electronic)9781450375689
DOIs
StatePublished - Jun 10 2020
Event25th ACM Symposium on Access Control Models and Technologies, SACMAT 2020 - Barcelona, Spain
Duration: Jun 10 2020Jun 12 2020

Publication series

NameProceedings of ACM Symposium on Access Control Models and Technologies, SACMAT

Conference

Conference25th ACM Symposium on Access Control Models and Technologies, SACMAT 2020
CountrySpain
CityBarcelona
Period6/10/206/12/20

Keywords

  • Attribute-based access control
  • Policy bypassing
  • Risk management, attribute forgery
  • Zero-day vulnerabiities

ASJC Scopus subject areas

  • Software
  • Computer Networks and Communications
  • Safety, Risk, Reliability and Quality
  • Information Systems

Fingerprint Dive into the research topics of 'Proactive risk assessment for preventing attribute-forgery attacks to ABAC policies'. Together they form a unique fingerprint.

  • Cite this

    Rubio-Medrano, C. E., Claramunt, L., Jogani, S., & Ahn, G. J. (2020). Proactive risk assessment for preventing attribute-forgery attacks to ABAC policies. In SACMAT 2020 - Proceedings of the 25th ACM Symposium on Access Control Models and Technologies (pp. 131-144). (Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT). Association for Computing Machinery. https://doi.org/10.1145/3381991.3395615