This week we explor the idea of Usage Control Model or UCON another type of security that effects most if not all types of security. The idea of UCON was first introduced (to me) in a paper called The UCONabc Usage Control Model by Jaehong Park George Mason University and Ravi Sandhu NSD Security and George Mason University. The abc stand for Authorizations, oBligations, and Conditions. Yet again it will be related to the social network Facebook and its security protocols along with some that dont currently exist but perhaps should be implemented.
The first and most widely used is the repeat password lock out. Everyone has put in the wrong password every now and then and when you do so it locks you out after so many tries. This is an example of usage control. In that it controls your usage based on the amount of failed attempts. Taken a step further we could say that if the ip that these failed logins is different (say in another country) we can have it notify the user of unauthorized access and make the user create a new password after they follow a link that is sent in the notification.
Another way to think of the UCON model is a basic control issues of consumer usage on a digital object. Along these lines, note Facebooks already built in dissemination protection of pictures, as it stands now Facebook has options to keep User pictures from being viewed by people the User designates. Taken a step further would be to say that the people who view these pictures cannot save them or friends of friends cannot view these pictures. Another way to approach this issue is by putting trackers or watermarks on the pictures once downloaded so that further dissemination is hampered or can be easily tracked.
To avoid writing a 10 page paper thats all for this week tune in next week for more.
No comments:
Post a Comment