Model-driven security

Home|Model-driven security

OpenPMF 4.0 Explainer & Demo Videos

In this video, ObjectSecurity founder & CEO Dr. Ulrich Lang explains and showcases the major new release 4.0 of our OpenPMF product.  OpenPMF™ makes security policy manageable through automation. It gives you powerful security policy implementation that is also effortless to manage. It allows you to improve protection, monitoring, testing, and documenting – for your information, [...]

By |December 14th, 2016|

AuthoriZation Based Access Control (ZBAC) and model-driven security

Today I would like to share my views about authoriZation Based Access Control (ZBAC) and how it relates to model-driven security (MDS) policy automation. There are numerous incarnations of the basic idea: an authorization server issues cryptographically signed tokens for other parties upon request, which are used as an access attribute source when access decisions [...]

By |August 5th, 2016|

Resource-Based Access Control (ResBAC) vs. Identity-Based Access Control (IBAC)

Most technical access control policies today are specified "identity-centric", a term I use for policies that are specified with the accessor (= the requestor's identity) in mind. This is the "who?", "who is accessing?", "who can do what?" etc. in the question that the policy answers. One of the reasons for doing that is because the information [...]

By |July 11th, 2016|

Model-driven security (MDS) for Privacy by Design (PbD)

I have blogged for years that model-driven security is an ideal approach for the management of policies that are relatively intuitive for humans, but cumbersome to technically implement across large, interconnected IT landscapes. Privacy policies are perfect examples of such policies - easy to say for example that "I only want my personal information to [...]

By |July 6th, 2016|

Implementing NIST 800-53 AC with OpenPMF™

NIST Special Publication 800-53 (Rev. 4), "Security and Privacy Controls for Federal Information Systems and Organizations," provides a catalog of security controls for U.S. federal information systems. Its 18 families of controls are used as best practice guidance worldwide. The “Access Control” (AC-1) control family includes 25 controls. Some of these controls require significant technical implementations. ObjectSecurity® OpenPMF™ [...]

By |June 20th, 2016|

Implementing Proximity-Based Access Control (PBAC) using Model-Driven Security

A particularly advanced and highly useful access control approach we have designed and implemented using Model-Driven Security (MDS) is Proximity-Based Access Control (PBAC) . The PABC approach is a highly innovative access control method where information provided to a subject is determined need-to-know based on proximity attributes. It goes far beyond traditional devices access based on physical [...]

By |May 20th, 2016|

Internet of Things (IoT) and Model-Driven Security – a perfect match!

In this unusually lengthy blog post I discuss how model-driven security is (and has always been) a perfect match for the Internet of Things. We are just wrapping up an embedded systems security consulting project, and are working hard in another large project to bundle our OpenPMF model-driven security policy automation product for easy adoption [...]

By |May 20th, 2016|

ObjectSecurity Core Model-Driven Security Patent Application Allowed By USPTO

ObjectSecurity, an information security leader  and the company driving model-driven security policy automation globally, today announced that a second of their core patent applications has been allowed by the USPTO. This is one of a series of ObjectSecurity’s patent applications that cover OpenPMF’s core inventions. Please contact ObjectSecurity if you are interested in licensing the [...]

By |January 7th, 2015|

ObjectSecurity Model-Driven Security Patent Application Allowed By USPTO

ObjectSecurity, an information security leader  and the company driving model-driven security policy automation globally, today announced that one of their core patent applications has been allowed by the USPTO. This is one of a series of ObjectSecurity’s patent applications that cover OpenPMF’s core inventions. Please contact ObjectSecurity if you are interested in licensing the intellectual [...]

By |September 13th, 2014|