functional security requirements

Functional Security Requirements

Building Predictable Systems using Behavioral Security

Modeling

Transparent and Pervasive Security

KNOWNS AND UNKNOWNS

“[T]here are known knowns; there are things we know that we know. There are known unknowns; that is to say there are things that, we now know we don't know. But there are also unknown unknowns – there are things we do not know we don't know.” – United States Secretary of Defense, Donald Rumsfeld

“I don’t care about security.”

Everyone “I just set up this new folder, and want to give everyone access” Everyone… •  on my team? •  in IT? •  in the company? •  who is able to access

this directory, even anonymously?

Security Requirements Gap Traditional Requirements •  Security Architecture •  Non-Functional •  Threats •  Exploits •  Defense in Depth •  Misuse Cases •  Known Unknowns

Well-covered in current literature “Keep the bad guys from messing with our stuff.”

Functional Requirements •  Business Controls •  Functional •  Least-Privilege •  Abuse •  Quality •  Constraints •  Unknown Unknowns

Missing from current literature “What are the good guys allowed to do?”

Behavioral Security Modeling

a method for describing and organizing security requirements

Functional requirements for robust and secure information

systems must define all human/information interactions

permitted by the system.

BSM Approach

•  Constraints •  Checklist of

Questions •  Requirement

Patterns •  Go-Path and

No-Go Path

BSM Approach

No-Go Path

•  Social •  Information •  Location •  Temporal •  Input

BSM Approach

No-Go Path

BSM Approach

No-Go Path

BSM Approach

No-Go Path

Example: Broker Financial

ClientsClients

Operations

Associate

Broker Broker

Example: Broker Financial •  New Financial

Services Firm •  Web-based books &

records system •  Broker, Associate,

Operations •  Two Offices •  Alternate Universe Clients

Operations

Associate

Broker

Example: Broker Financial Social Constraints •  Role-Based Access:

Broker, Associate, Operations

•  Attribute-Based Access: Licensing (Trading Functions for Associates, Brokers)

•  No-Go Path: Trading Clients

Operations

Associate

Broker

Example: Broker Financial Information Constraints •  Role Based Data

Access (Clients) •  Dual Controls

(Checks) •  “My Data” (Clients) •  No-Go Path: Clients

Clients

Operations

Associate

Broker

Example: Broker Financial Location and Temporal Constraints •  On-Premise Only

(Operations) •  During Business

Hours (Trading Functions)

Operations

Associate

Broker

Example: Broker Financial Input Constraints •  Role-Based

Transaction Limits (Trading Limits)

•  Input Validation (many)

Operations

Associate

Broker

Behavioral Security Modeling – What’s Next?

•  White Paper on http://transvasive.com/ •  Field testing: If you’re interested, please

let us know! •  Question Checklist (summary, one-page) •  Patterns Website (Wiki) •  Training, Tools, Extend approach later into

the development lifecycle

Thank You! John Benninghoff

john@transvasive.com http://transvasive.com/ Twitter: @transvasive

Karl Brophey karl@brophey.net

Transparent and Pervasive Security

functional security requirements

Documents

common criteria for information technology security...

rsa security analytics v10.6.1 security target · security...

security target lite mav31s open platform jcs coreg_lc...

non -functional constrains constrains functional...

functional & technical requirements document template...this...

functional and non-functional requirements · web viewthis...

functional requirements catalogue 30 march 2011 ·...

secure development processes - owasp · touchpoint 4:...

vmware airwatch mobile device management · identification...

the “frbr family” functional requirements for...

xprotect professional plus open csi a&e...

request for proposal (rfp) for providing core banking...

owasp the owasp foundation · 2020-01-17 · security...

lecture 6: non-functional requirements (nfrs) · what are...

المحاضرة الثالثة. software requirements...

labeled security protection profilethe common criteria (cc)...

atms user requirements & atms functional requirements

draft cyber security electronic security...

secure system development · 2018-05-17 · clasp best...

ifx cci 001fh securitytargetlite - common criteria ·...