tag:blogger.com,1999:blog-4391522908329730957.post1545767919699374951..comments2008-06-24T11:26:10.823-04:00Manu Namboodirihttp://www.blogger.com/profile/16254830889604237082noreply@blogger.comBlogger4125tag:blogger.com,1999:blog-4391522908329730957.post-52376146446430428682008-06-24T11:26:10.823-04:002008-06-24T11:26:10.823-04:00Meta-data is any data describing the policies of what can be done with the data - this can be protected via integrity checks. Not that hard. <BR/><BR/>The hard part is getting the policies to "persist" with the data itself - and this is the key. If you can track and enforce policies that remain with the data regardless of where it goes and rests, now we are getting somewhere. <BR/><BR/>And these policies can also have fine grained ACLs which can deny IT admins the rights - while allowing content owners to access it. All the while integrating with a robust and integrity checked log/audit trail.Manu Namboodirihttp://www.blogger.com/profile/16254830889604237082noreply@blogger.comtag:blogger.com,1999:blog-4391522908329730957.post-9879989715379258532008-06-24T11:05:55.900-04:002008-06-24T11:05:55.900-04:00Manu,<BR/><BR/>We do not use meta-data. We rank code, devices and users for integrity and enforce at the kernel level. If you rank code higher for integrity, than all users, including the security officers and admins, then no one can alter code.<BR/><BR/>Let me ask you this? What governs the meta-data? How do you know that it is not being altered? Do you have a secondary infrastructure just for this? Actually, integrity rankings can be used here as well.<BR/><BR/>The thing most people do not consider is that meta-data is a potential covert channel in itself. It is only one way to do things.Rob Lewishttp://www.googgun.comnoreply@blogger.comtag:blogger.com,1999:blog-4391522908329730957.post-62599349312989094382008-06-24T08:39:25.425-04:002008-06-24T08:39:25.425-04:00Rob - agree absolutely. I do think a log and audit trail is absolutely critical. <BR/><BR/>In an information-centric or data-centric world, the protection and audit policies are part of the data (or meta-data if you will) and this makes it easier to track, audit and more importantly deter bad behavior...Manu Namboodirihttp://www.blogger.com/profile/16254830889604237082noreply@blogger.comtag:blogger.com,1999:blog-4391522908329730957.post-10084562170455318922008-06-23T23:20:10.368-04:002008-06-23T23:20:10.368-04:00Two comments:<BR/><BR/>If one thinks in terms of information-centric security or even multilevel security, IT people can retain system and network privileges to maintain networks without having access to data in work groups.<BR/><BR/>The greatest tool to prevent insider abuse in the tamper proof audit trail.<BR/>People with access are authorized to use that data for only certain things. If an authorized user attempts an unauthorized use of the data, he will hang himself by the audit trace that can not be altered to cover one's tracks.Rob Lewishttp://www.googgun.comnoreply@blogger.com