• Home

  • Documents

  • ACCESS CONTROL MANAGEMENT By: Poonam Gupta Sowmya Sugumaran
15
ACCESS CONTROL MANAGEMENT By: Poonam Gupta Sowmya Sugumaran

ACCESS CONTROL MANAGEMENT By: Poonam Gupta Sowmya Sugumaran

Embed Size (px)

Citation preview

Page 1: ACCESS CONTROL MANAGEMENT By: Poonam Gupta Sowmya Sugumaran

ACCESS CONTROL MANAGEMENT

By:

Poonam GuptaSowmya Sugumaran

Page 2: ACCESS CONTROL MANAGEMENT By: Poonam Gupta Sowmya Sugumaran

Project Goal

• The primary goal of access control management is to preserve and protect the confidentiality, integrity, and availability of information, systems, and resources.

Page 3: ACCESS CONTROL MANAGEMENT By: Poonam Gupta Sowmya Sugumaran

What is Access Control

• process by which users are identified and granted certain privileges to resources

• limits the use of a resource

Page 4: ACCESS CONTROL MANAGEMENT By: Poonam Gupta Sowmya Sugumaran

Types of Access Control

1. Discretionary-owner 2. Mandatory-authorities3. Role-based-according to role4. Rule-based-pre determined rules

Page 5: ACCESS CONTROL MANAGEMENT By: Poonam Gupta Sowmya Sugumaran

Access Control Technologies

• Tokens• Smart cards• Encrypted keys• Passwords

Popular Technologies

Page 6: ACCESS CONTROL MANAGEMENT By: Poonam Gupta Sowmya Sugumaran

Kerberos

• Authentication Protocol• For Client/Server Application• Using Secret Key Cryptography

Page 7: ACCESS CONTROL MANAGEMENT By: Poonam Gupta Sowmya Sugumaran

VPN

ACP(Kerberos)

Gateway

Internet

Page 8: ACCESS CONTROL MANAGEMENT By: Poonam Gupta Sowmya Sugumaran

Kerberos

Three things happen between client and server when client

Initiate to allocate resources

• AS Exchange• TGS Exchange• Client/Server (CS) Exchange

Page 9: ACCESS CONTROL MANAGEMENT By: Poonam Gupta Sowmya Sugumaran

http://technet.microsoft.com/en-us/library/bb742516.aspx

Page 10: ACCESS CONTROL MANAGEMENT By: Poonam Gupta Sowmya Sugumaran

Technical Details

User namePasswordPolicies

AS ServerKGS Sever

Resource 1

Resource 2

1 3

2

4

4

Page 11: ACCESS CONTROL MANAGEMENT By: Poonam Gupta Sowmya Sugumaran

Technical Details

Step 1: User-Client Logon(i)User-username & pswrd-client(ii)client-H(pswrd)-secret key of user

Step 2: Client Authentication(Client-AS)(i)Client sends user ID AS generates secret key from database(ii)AS sends 2 messages to client: Msg A- Client/TGS session key encrypted by user’s secret key Msg B- TGT encrypted with TGS’s secret key

Page 12: ACCESS CONTROL MANAGEMENT By: Poonam Gupta Sowmya Sugumaran

Contd..

Step 3: Client Service Authorization(Client-TGS)(i)Client-2 messages to TGS: Msg C- TGT & service ID Msg D- Authenticator(user ID, timestamp) encrypted using client/TGS session key(ii)TGS decrypts TGT & authenticator and sends 2 msgs to client: Msg E-Client-to-Server ticket Msg F-Client/Server session key encrypted with Client/TGS session key.

Page 13: ACCESS CONTROL MANAGEMENT By: Poonam Gupta Sowmya Sugumaran

Step 4: Client Service Request(Client- Service Server)(i)Client sends 2 msgs to SS: Msg E(Client/SS ticket) Msg G-Authenticator (user ID, timestamp, C/S session key)(ii)SS decrypts to get C/S session key SS decrypts authenticator and sends msg to client Msg H-Timestamp in client’s authenticator+1 encrypted using C/S key

Page 14: ACCESS CONTROL MANAGEMENT By: Poonam Gupta Sowmya Sugumaran

Roadmap of the Project

TASK MONTH WEEK

Understanding the project

January 3 – 4

Installing Kerberos & Proposal preparation

February 1

Proposal Presentation

February 2

Coding, Testing & Debugging

February-March

3-4

Implementation March-April

4-2

Final Presentation Preparation

April 3-4

Final Presentation May 1

Page 15: ACCESS CONTROL MANAGEMENT By: Poonam Gupta Sowmya Sugumaran

Thank You…!!!


14 poonam bones

14 poonam bones

Education
18 epithelium poonam

18 epithelium poonam

Documents
Sowmya Data Analysis

Sowmya Data Analysis

Documents
Ppt Final Sowmya

Ppt Final Sowmya

Documents
sowmya- raghuram

sowmya- raghuram

Documents
POONAM CHHABRA.doc120

POONAM CHHABRA.doc120

Documents
Poonam Essel propack

Poonam Essel propack

Business
Poonam Nagar

Poonam Nagar

Documents
Sowmya Latest Stills

Sowmya Latest Stills

Art & Photos
Poonam catalogue.pdf

Poonam catalogue.pdf

Documents
Poonam Designs

Poonam Designs

Documents
POONAM VERMARS1901B27

POONAM VERMARS1901B27

Documents
poonam purohit

poonam purohit

Documents
Sowmya Review

Sowmya Review

Documents
Poonam and sakshi

Poonam and sakshi

Education
Poonam brand logos

Poonam brand logos

Documents
Poonam Engineering Co

Poonam Engineering Co

Documents
Ketamine poonam

Ketamine poonam

Documents
VIJAYAN SUGUMARAN Department of Decision …VIJAYAN SUGUMARAN Department of Decision and Information Sciences School of Business Administration Oakland University Rochester, MI 48309

VIJAYAN SUGUMARAN Department of Decision …VIJAYAN SUGUMARAN Department of Decision and Information Sciences School of Business Administration Oakland University Rochester, MI 48309

Documents
Special stains by sowmya

Special stains by sowmya

Education
Computer SBI RBI Sowmya EP

Computer SBI RBI Sowmya EP

Documents
Dr. Poonam Shakya

Dr. Poonam Shakya

Documents
2. redefining agility using tools sowmya

2. redefining agility using tools sowmya

Technology
Poonam shetty _Trainer

Poonam shetty _Trainer

Documents
Ioc Poonam Email

Ioc Poonam Email

Documents
ACCESS CONTROL MANAGEMENT Poonam Gupta Sowmya Sugumaran PROJECT GROUP # 3

ACCESS CONTROL MANAGEMENT Poonam Gupta Sowmya Sugumaran PROJECT GROUP # 3

Documents
Poonam engineering-co

Poonam engineering-co

Business
VIJAYAN SUGUMARAN - Oakland University · VIJAYAN SUGUMARAN Department of Decision and Information Sciences School of Business Administration ... AISWorld NET Challenge Award, 2007

VIJAYAN SUGUMARAN - Oakland University · VIJAYAN SUGUMARAN Department of Decision and Information Sciences School of Business Administration ... AISWorld NET Challenge Award, 2007

Documents
Poonam Album 1st

Poonam Album 1st

Documents
Assignment of Poonam

Assignment of Poonam

Documents