How to prevent data loss by creating access control rules

More from Gary Brown Learn how to proactively prevent data loss using a central repository model. Get the latest news and expert advice on data protection.

For this tip, I will explain the how to prevent data loss by developing in-depth access control rules required to allow a single-database system to function securely and enable a revolution in the way information is securely managed.

Data-access scenarios in the central repository model
As an example, consider the possibility of providing access to an individual's medical records: The access control system may need to identify whether the requestor is a doctor or medical practitioner. This type of access control rule could not be implemented based simply on digital signature identity, because it may be important to define that 'read' and 'update' access to the medical records can only be permitted by registered doctors. How can this access control rule be implemented?

With a centralised repository of information, it is possible to build access control rules that use the information in the repository. Continuing the previous example, let's assume Dr. Jones requests access to Mary Poppins' medical records. The access control rules associated with Mary Poppins' medical records can define a query on the virtual representation of Dr. Jones (i.e. the requesting user) to determine if he is certified by the General Medical Council. This information would have been created by the General Medical Council, and associated with Dr. Jones, with access control rules to allow anyone to read the information, but only the General Medical Council would be able to update or delete it. This means that Dr. Jones cannot forge this credential, and if he were no longer a doctor (i.e. he retires or is struck off), then the General Medical Council could simply delete this credential, which would take immediate effect and prevent him from gaining access.

Payment information and the central repository model
Payment information is currently handled in different ways when completing financial transactions over the Internet. On some websites, credit and debit card details are recorded within a user's website profile. With other websites, this information is instead requested for each new transaction, and isn't locally stored by the website. A third method uses the services of third-party payment processors, such as PayPal, which enable the card details to be hidden from the website.

Using the central repository model, it is possible to record credit and debit card information with an individual's virtual representation with access control rules to ensure that only authorised payment processing organisations can read the information.

To illustrate this scenario, when a user makes an online purchase, the website passes the user's virtual representation ID (or URL) to the payment processor along with the other transaction details. The payment processing organisation can then retrieve the card details from the user's virtual representation, as they will have the appropriate privileges to access the information. As an extra level of validation, the payment processor can communicate with the user via his or her virtual representation, to confirm the transaction. This approach would effectively mean that users no longer need to directly specify their credit or debit card details when purchasing goods or services over the Internet.

Summary
The current approach to storing sensitive data, which involves the duplication of personal and corporate information in a multitude of databases, and an increasing number of profiles registered with different websites, cannot persist. It is not scalable and is extremely insecure -- whether based on evidence such as the numerous, well publicised data security breaches of recent years, or simply because the more profiles that a user must maintain, the greater the likelihood that his or her information will eventually be compromised.

Digital signature technology provides a level of assurance that the party making a data request is who they say they are. This is an important pre-requisite in any secure infrastructure. However, it has limitations in the way it can be used to govern general access to information.

What do you think? Could this work? Send us your thoughts on data protection solutions.

Governing access to data with access control rules that relate to information about a requester, as opposed to simply relying on his or her identity, offers greater flexibility and scalability. This type of approach could provide a long-term solution to the types of information security problems entailed by moving data from and storing data in so many different databases, since it removes the need to replicate and transfer data about individuals and companies.

This digital signature-based paradigm meets the business requirements of most organisations by enabling access to common information about entities that is guaranteed to be up to date and consistent, while at the same time providing the capability to record their own specific information against those entities, and ensure that only authorised third parties can access it.

About the author:
Gary Brown has a PhD in Computer Science, and has worked in the IT industry for over 18 years in the telecoms and financial service sectors.

Rate this Tip To rate tips, you must be a member of SearchSecurity.co.UK. Register now to start rating these tips. Log in if you are already a member. Digg This!     StumbleUpon     Del.icio.us    RELATED CONTENT Data Protection Solutions and Strategy Company files at risk of employee data theft McAfee-Intel: Why the McAfee acquisition is being met with scepticism Mobile digital pad/pen helps secure patient data collection Hard-disk erasure: Using HDDerase and Secure Erase hard-drive eraser In any given app for smartphone, security risks are being neglected First of data loss prevention vendors touts downloadable DLP software Ministry of Justice asks for input on UK privacy laws PCI PTS: Understanding PCI PIN security requirements IBM to acquire BigFix for configuration, vulnerability management Survey: SMB security increasing for better cybercrime protection Enterprise Data Storage Safend expands data leakage prevention product to plug more gaps TrueCrypt: How to get started with open source disk encryption Report: Firms avoid encrypting backup tapes, databases Encryption tips: How to secure a laptop The real reason behind backup recovery disk failures Infosec pros wake up to Excel spreadsheet security risks PCI credit card complaince: Credit card data protection (over the phone) 3ami allows employers to track use of USB storage devices EMC adds configuration management with Configuresoft acquisition What are USB flash drive security best practices? Risk management strategies Hard-disk erasure: Using HDDerase and Secure Erase hard-drive eraser Using resource allocation management to prevent DoS and other attacks How risk management standards can work for enterprise IT Are you too small for an email retention and archiving policy? Enterprise data management: Prevent data loss and insider threats Improving software with the Building Security in Maturity Model (BSIMM) Increasing information security awareness in the enterprise How to develop a culture of security in the enterprise Creating and enforcing a clear-desk policy Physical security threats: Don't gift your data away RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary Data Protection Act 1998  (SearchStorageUK.com) Information Commissioner's Office (ICO)  (SearchStorageUK.com) UK Identity Cards Act  (SearchSecurityUK.com) RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.