SlideShare a Scribd company logo

SE-PostgreSQL System-Wide Access Control

Kohei KaiGai
Kohei KaiGai

KaiGai Kohei from NEC presented on the SE-PostgreSQL project. The project aims to enable controlling access to database objects using a centralized SELinux security policy. It works by adding security hooks to PostgreSQL that allow a SE-PostgreSQL plugin to intercept operations and check them against the SELinux policy. The architecture includes a pg_seclabel system catalog for storing security labels and a new SECURITY LABEL statement for managing them. Future work includes improving security hook coverage and adding features like row-level access control.

BusinessTechnology
1 of 29
Download to read offline
SE-PostgreSQL System-wide consistency of access control NEC OSS Promotion Center KaiGai Kohei <kaigai@ak.jp.nec.com>
Self Introduction ▐ Name KaiGai Kohei ▐ Company NEC, OSS Promotion Center ▐ Works 7 years experiences of OSS development » SELinux » PostgreSQL » Memcached » Apache (mod_selinux) ▐ SE-PostgreSQL Project It enables to control accesses to database objects using a centralized security policy of SELinux. Launched at 2006, then I've worked together both of SELinux and PostgreSQL community. Now, under development as a plugin for PostgreSQL v9.1. Page 2 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
Agenda 1. The Goal of this project 2. Architecture of SE-PostgreSQL 3. Playing with SE-PostgreSQL (demonstration) 4. Today, and the Future Page 3 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
1. The Goal of this Project
An analogy on Filesystem and Database info System Filesystem asset call Permission Filesystem OS (Linux) info Database asset SQL ACLs Database RDBMS (PostgreSQL) User Process Request Object manager and Resource ▐ Same relationship on user processes, requests, object manager and information assets. ▐ Differences in the way to store and access them System call for Filesystem SQL for Databases ▐ Also differences in access control model. what does it make differences in the result? Page 5 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
The Goal of this project (1/2) Human user Human user Both of them tries to Both of them tries to reference classified reference classified information, But access information, But access controls are independent. controls are independent. Login Login bash bash vi Filesystem vi Networks psql psql classified unclassified information information X-window PostgreSQL domain of inter process domain of classified processes communication channels unclassified processes Page 6 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
Lack of conductor Page 7 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
The Goal of this project (2/2) Human user a centralized security server Human user Security Policy SELinux Login Access control Login bash bash vi Filesystem vi Networks psql psql classified unclassified information information X-window PostgreSQL domain of inter process domain of classified processes communication channels unclassified processes Page 8 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
OT: LAMP/SELinux Security Policy SELinux domain of domain of classified processes Access control unclassified processes classified unclassified information information Filesystem Networks web application Memcached PostgreSQL web application mod_selinux.so Apache/httpd Page 9 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
SELinux as a Security Server (1/3) ▐ Interactions with object managers Kernel subsystems do queries via LSM. Userspace applications do queries via libselinux. Both of them control user's requests according to the decision. ▐ Security context as a common identifier system_u:system_r:postgresql_t:s0 system_u:object_r:sepgsql_table_t:s0 A short formatted text, independent from object classes. ▐ Security policy A massive set of access control rules. A rule describes a set of actions to be allowed on a pair of a security context of the subject (process being accessing) and a security context of the object being accessed. Page 10 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
SELinux as a Security Server (2/3) ▐ Case of Linux Kernel staff_u:staff_r:staff_t:s0 user_u:user_r:user_t:s0 write(2) write(2) read(2) read(2) user process A Subject: user process B Subject: user_u:user_r:user_t:s0 user_u:user_r:user_t:s0 Applications Object: user_u:object_r:user_home_t:s0 Linux kernel Object: user_u:object_r:user_home_t:s0 Target class: file Target class: file VFS LSM Security Policy file:{getattr read write ...} file:{getattr read write ...} SELinux File X File Y system_u:object_r:etc_t:s0 user_u:object_r:user_home_t:s0 Page 11 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
SELinux as a Security Server (3/3) ▐ Case of PostgreSQL staff_u:staff_r:staff_t:s0 user_u:user_r:user_t:s0 UPDATE UPDATE SELECT SELECT user process A Subject: user process B Subject: user_u:user_r:user_t:s0 user_u:user_r:user_t:s0 Applications PostgreSQL Object: user_u:object_r:user_table_t:s0 Linux kernel Object: user_u:object_r:user_table_t:s0 Target class: db_table Target class: db_table libselinux Query Executor SE-PgSQL Security Policy db_table:{select update ...} db_table:{select update ...} SELinux Table X Table Y user_u:object_r:user_table_t:s0 system_u:object_r:sepgsql_ro_table_t:s0 Page 12 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
2. Architecture of SE-PostgreSQL
What was necessary to be enhanced SELECT * FROM 1. Security Hooks t1 WHERE x = 2; 2. Pg_seclabel system catalog 3. SQL statement support 4. An intermediator module DB Authentication SECURITY LABEL SECURITY LABEL statement support statement support libselinux Query Parser SE-PgSQL Security Policy Plugin Query Executor SELinux Pg_seclabel User Tables System Catalogs PostgreSQL Linux kernel Page 14 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
Idea of External Security Provider ▐ Background Earlier version of SE-PostgreSQL was launched at 2006 Not an easy path to get merged, because of ... • A large scale patch, even if minimum functionalities • Few people are familiar with SELinux in PgSQL community • Being not neutral to other security mechanism ▐ Idea of External Security Provider (ESP) Similar idea to LSM, XACE PG provides a set of security hooks which allow third party plugins to make its access control decision. • The patch can be broken up to smaller pieces. • SELinux specific code can be moved into the plugin modules. • Being open to the upcoming other security models The first version of ESP shall be bundled in v9.1. Page 15 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
Security Hooks (1/2) bool ExecCheckRTPerms(List *rangeTable, bool ereport_on_violation) { : if (ExecutorCheckPerms_hook) result = (*ExecutorCheckPerms_hook)(rangeTable, ereport_on_violation); return result; } bool sepgsql_relation_privileges(...) bool sepgsql_relation_privileges(...) ▐ ExecCheckRTPerms() It is a routine to check permissions on DMSs List of RangeTblEntry contains all the necessary information. • OID of the relation to be referenced • A flag of required privileges (e.g, ACL_SELECT, ACL_UPDATE, ...) The ESP hook allows plugins to make its access control decision. If violated, it raises and returns an error according to the spec. Page 16 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
Security Hooks (2/2) staff_u:staff_r:staff_t:s0 getpeercon(3) getpeercon(3) SE-PgSQL IKE IKE Daemon Daemon user process Labeled IPsec connection PostgreSQL Authentication Hook ▐ SELinux provides labeled IPsec and getpeercon(3) IKE daemon delivers security context of the user process getpeercon(3) allows to retrieve the delivered security context requires: kernel >= 2.6.18, ipsec-tools >= 0.7.2 ▐ (Post) Authentication hook It allows ESP plugins to get control post database authentication. SE-PgSQL retrieve security context of the peer process, as privileges of the client. Page 17 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
Pg_seclabel system catalog postgres=# SELECT * FROM pg_catalog.pg_seclabel; reloid | objoid | subid | tag | label --------+--------+-------+---------+--------------------------------------- 1259 | 2619 | 0 | selinux | system_u:object_r:sepgsql_sysobj_t:s0 1259 | 2619 | -7 | selinux | system_u:object_r:sepgsql_sysobj_t:s0 1259 | 2619 | -6 | selinux | system_u:object_r:sepgsql_sysobj_t:s0 1259 | 2619 | -5 | selinux | system_u:object_r:sepgsql_sysobj_t:s0 : : : : : Pg_seclabel catalog reloid objoid subid label 1259 1234 0 system_u:object_r:sepgsql_table_t:s0 1259 5468 0 system_u:object_r:sepgsql_ro_table_t:s0 table X (OID = 1234) 1259 5468 4 system_u:object_r:sepgsql_ro_column_t:s0 1255 8901 0 system_u:object_r:sepgsql_proc_exec_t:s0 Pg_proc catalog table Y (OID = 5468) SQL function Z Pg_class catalog (OID = 8901) Page 18 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
SECURITY LABEL statement SECURITY LABEL [ FOR <provider> ] ON <objtype> <objname> IS <security label> ▐ This new SQL syntax provides an interface to change security label of database objects. ▐ ESP can validate the supplied label and check user's privileges. postgres=# SECURITY LABEL ON TABLE t1 IS 'system_u:object_r:sepgsql_ro_table_t:s0'; LOG: SELinux: allowed { setattr relabelfrom } scontext=unconfined_u:unconfined_r:unconfined_t:s0 tcontext=system_u:object_r:sepgsql_table_t:s0 tclass=db_table name=t1 LOG: SELinux: allowed { relabelto } scontext=unconfined_u:unconfined_r:unconfined_t:s0 tcontext=system_u:object_r:sepgsql_ro_table_t:s0 tclass=db_table name=t1 SECURITY LABEL Page 19 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
OT: Default security context on table creation ▐ DefineRelation() also calls ESP plugin ... 1. to check permission of table creation 2. to get security context to be assigned on the new table ▐ A table has its security context on its creation time, then user can relabel it using SECURITY LABEL statement. CREATE TABLE SQL Parser ① Permission checks ① Permission checks statement properties properties of new table ② Compute a default ② Compute a default of new table security context security context DefineRelation() ESP Hook plugin (sepgsql.so) User create Classified Table Classified Table New Table Page 20 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
As an intermediator between PgSQL and SELinux getpeercon(3) sbj: user_u:user_r:user_t:s0 sbj: user_u:user_r:user_t:s0 obj: system_u:object_r:sepgsql_table_t:s0 obj: system_u:object_r:sepgsql_table_t:s0 class: db_table class: db_table Pg_seclabel scontext libselinux tcontext policy invocations via hook query sepgsql.so decision selinux OID of table, OID of table, Query types,... Query types,... db_table:{ select update ... }} db_table:{ select update ... ▐ sepgsql.so is the ESP plugin of SE-PostgreSQL ▐ It interprets a term of PgSQL into a term of SELinux OID of the table security context of the table ACL_SELECT db_table:{select} permission ▐ Then, it interprets SELinux's decision into status of PgSQL. access denied ereport(ERROR, ...) Page 21 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
OT: Userspace access vector cache (avc) ▐ security_compute_xxx() always invokes a system-call AVC enables to cache access control decisions recently used. Query Query avc_has_perms() Memory Memory reference reference validation check of Decision selinux_kernel_status Decision userspace cache mmap(2) still valid invalid reset avc cache /selinux/status lookup an avc entry from the cache /selinux/access In heuristic, In heuristic, not found Found the rate to hit /selinux/create the rate to hit make an avc entry overs 99.9% overs 99.9% System System call call check access permissions Security Policy validation check of SELinux still valid userspace cache invalid Page 22 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
3. Playing with SE-PostgreSQL (demonstration)
4. Today and the Future
Current status of SE-PostgreSQL ▐ Under development based on the v9.1 ▐ Works in completion Security hook on DML permission checks ▐ Works in progress Pg_seclabel and security label support Security hook on authentication Security hook on table creation we have discussion on the CommitFest-2nd ▐ Source of the SE-PgSQL plugin http://code.google.com/p/sepgsql/ Page 25 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
Future works of SE-PostgreSQL ▐ Comprehensive security hooks ▐ Backup/Restore support ▐ Trusted Procedure ▐ Security label of user tuples ▐ Row-level access control ▐ Integration with system audit Page 26 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
Our Information Assets over the Cloud Web applications Memcached (selinux_engine) SE-PostgreSQL Linux(SELinux) Web server as system platform (Apache + mod_selinux) ▐ Information assets getting consolidated at somewhere in the cloud We can reference them anywhere, anytime, and anybody? ▐ Need to ensure both of data sharing and separation at the same time. System-wide consistency of access control on such a complex system Page 27 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
Any Questions?
Thank you!

Recommended

Lcj pg sql-lt-kaigai
Lcj pg sql-lt-kaigaiLcj pg sql-lt-kaigai
Lcj pg sql-lt-kaigaiKohei KaiGai
 
The Security-Enhanced PostgreSQL - "system wide" consistency in access control
The Security-Enhanced PostgreSQL - "system wide" consistency in access controlThe Security-Enhanced PostgreSQL - "system wide" consistency in access control
The Security-Enhanced PostgreSQL - "system wide" consistency in access controlKohei KaiGai
 
LAPP/SELinux - A secure web application stack using SE-PostgreSQL
LAPP/SELinux - A secure web application stack using SE-PostgreSQLLAPP/SELinux - A secure web application stack using SE-PostgreSQL
LAPP/SELinux - A secure web application stack using SE-PostgreSQLKohei KaiGai
 
Label based Mandatory Access Control on PostgreSQL
Label based Mandatory Access Control on PostgreSQLLabel based Mandatory Access Control on PostgreSQL
Label based Mandatory Access Control on PostgreSQLKohei KaiGai
 
LAPP/SELinux - A secure web application stack powered by SELinux
LAPP/SELinux - A secure web application stack powered by SELinuxLAPP/SELinux - A secure web application stack powered by SELinux
LAPP/SELinux - A secure web application stack powered by SELinuxKohei KaiGai
 
Security Enhanced PostgreSQL - System-wide consistency in access control
Security Enhanced PostgreSQL - System-wide consistency in access controlSecurity Enhanced PostgreSQL - System-wide consistency in access control
Security Enhanced PostgreSQL - System-wide consistency in access controlKohei KaiGai
 
LCJ2010-KaiGai-sepgsql
LCJ2010-KaiGai-sepgsqlLCJ2010-KaiGai-sepgsql
LCJ2010-KaiGai-sepgsqlKohei KaiGai
 
LAPP/SELinux - A secure web application platform powered by SELinux
LAPP/SELinux - A secure web application platform powered by SELinuxLAPP/SELinux - A secure web application platform powered by SELinux
LAPP/SELinux - A secure web application platform powered by SELinuxKohei KaiGai
 

Recommended

Lcj pg sql-lt-kaigai
Lcj pg sql-lt-kaigaiLcj pg sql-lt-kaigai
Lcj pg sql-lt-kaigaiKohei KaiGai
 
The Security-Enhanced PostgreSQL - "system wide" consistency in access control
The Security-Enhanced PostgreSQL - "system wide" consistency in access controlThe Security-Enhanced PostgreSQL - "system wide" consistency in access control
The Security-Enhanced PostgreSQL - "system wide" consistency in access controlKohei KaiGai
 
LAPP/SELinux - A secure web application stack using SE-PostgreSQL
LAPP/SELinux - A secure web application stack using SE-PostgreSQLLAPP/SELinux - A secure web application stack using SE-PostgreSQL
LAPP/SELinux - A secure web application stack using SE-PostgreSQLKohei KaiGai
 
Label based Mandatory Access Control on PostgreSQL
Label based Mandatory Access Control on PostgreSQLLabel based Mandatory Access Control on PostgreSQL
Label based Mandatory Access Control on PostgreSQLKohei KaiGai
 
LAPP/SELinux - A secure web application stack powered by SELinux
LAPP/SELinux - A secure web application stack powered by SELinuxLAPP/SELinux - A secure web application stack powered by SELinux
LAPP/SELinux - A secure web application stack powered by SELinuxKohei KaiGai
 
Security Enhanced PostgreSQL - System-wide consistency in access control
Security Enhanced PostgreSQL - System-wide consistency in access controlSecurity Enhanced PostgreSQL - System-wide consistency in access control
Security Enhanced PostgreSQL - System-wide consistency in access controlKohei KaiGai
 
LCJ2010-KaiGai-sepgsql
LCJ2010-KaiGai-sepgsqlLCJ2010-KaiGai-sepgsql
LCJ2010-KaiGai-sepgsqlKohei KaiGai
 
LAPP/SELinux - A secure web application platform powered by SELinux
LAPP/SELinux - A secure web application platform powered by SELinuxLAPP/SELinux - A secure web application platform powered by SELinux
LAPP/SELinux - A secure web application platform powered by SELinuxKohei KaiGai
 
Centralizing sequence analysis
Centralizing sequence analysisCentralizing sequence analysis
Centralizing sequence analysisDenis C. Bauer
 
Getting Memcached Secure
Getting Memcached SecureGetting Memcached Secure
Getting Memcached SecureKohei KaiGai
 
Oracle rac 10g best practices
Oracle rac 10g best practicesOracle rac 10g best practices
Oracle rac 10g best practicesHaseeb Alam
 
ASPLOS2011 workshop RESoLVE "Effect of Disk Prefetching of Guest OS "
ASPLOS2011 workshop RESoLVE "Effect of Disk Prefetching of Guest OS "ASPLOS2011 workshop RESoLVE "Effect of Disk Prefetching of Guest OS "
ASPLOS2011 workshop RESoLVE "Effect of Disk Prefetching of Guest OS "Kuniyasu Suzaki
 
A framework for distributed control and building performance simulation
A framework for distributed control and building performance simulationA framework for distributed control and building performance simulation
A framework for distributed control and building performance simulationDaniele Gianni
 
OpenStack at Xen summit Asia
OpenStack at Xen summit Asia OpenStack at Xen summit Asia
OpenStack at Xen summit Asia Jaesuk Ahn
 
Scalable Web Solutions - Use Case: Regulatory Reform In Vietnam On eZ Publish...
Scalable Web Solutions - Use Case: Regulatory Reform In Vietnam On eZ Publish...Scalable Web Solutions - Use Case: Regulatory Reform In Vietnam On eZ Publish...
Scalable Web Solutions - Use Case: Regulatory Reform In Vietnam On eZ Publish...Ivo Lukač
 
Denial of Service in Software Defined Netoworks
Denial of Service in Software Defined NetoworksDenial of Service in Software Defined Netoworks
Denial of Service in Software Defined NetoworksMohammad Faraji
 
Microx - A Unix like kernel for Embedded Systems written from scratch.
Microx - A Unix like kernel for Embedded Systems written from scratch.Microx - A Unix like kernel for Embedded Systems written from scratch.
Microx - A Unix like kernel for Embedded Systems written from scratch.Waqar Sheikh
 
OpenSearchLab and the Lucene Ecosystem
OpenSearchLab and the Lucene EcosystemOpenSearchLab and the Lucene Ecosystem
OpenSearchLab and the Lucene EcosystemGrant Ingersoll
 
Mastering PostgreSQL Administration
Mastering PostgreSQL AdministrationMastering PostgreSQL Administration
Mastering PostgreSQL AdministrationCommand Prompt., Inc
 
Mastering PostgreSQL Administration
Mastering PostgreSQL AdministrationMastering PostgreSQL Administration
Mastering PostgreSQL AdministrationEDB
 
Introduction to SELinux Part-I
Introduction to SELinux Part-IIntroduction to SELinux Part-I
Introduction to SELinux Part-In|u - The Open Security Community
 
DBArtisan® vs Quest Toad with DB Admin Module
DBArtisan® vs Quest Toad with DB Admin ModuleDBArtisan® vs Quest Toad with DB Admin Module
DBArtisan® vs Quest Toad with DB Admin ModuleEmbarcadero Technologies
 
linux software architecture
linux software architecture linux software architecture
linux software architecture Sneha Ramesh
 
Shared personalization service. How to scale to 15 k rps (Patrice Pelland)
Shared personalization service. How to scale to 15 k rps (Patrice Pelland)Shared personalization service. How to scale to 15 k rps (Patrice Pelland)
Shared personalization service. How to scale to 15 k rps (Patrice Pelland)Ontico
 
Netapp Deduplication concepts
Netapp Deduplication conceptsNetapp Deduplication concepts
Netapp Deduplication conceptsSaroj Sahu
 
Icme2011 industrial poster
Icme2011 industrial posterIcme2011 industrial poster
Icme2011 industrial posterMedia Integration and Communication Center
 
2014 04-03 xyratex event
2014 04-03 xyratex event2014 04-03 xyratex event
2014 04-03 xyratex eventShawn Wells
 
Initial review of Firebird 3
Initial review of Firebird 3Initial review of Firebird 3
Initial review of Firebird 3Mind The Firebird
 
20221116_DBTS_PGStrom_History
20221116_DBTS_PGStrom_History20221116_DBTS_PGStrom_History
20221116_DBTS_PGStrom_HistoryKohei KaiGai
 
20221111_JPUG_CustomScan_API
20221111_JPUG_CustomScan_API20221111_JPUG_CustomScan_API
20221111_JPUG_CustomScan_APIKohei KaiGai
 

More Related Content

Similar to SE-PostgreSQL System-Wide Access Control

Centralizing sequence analysis
Centralizing sequence analysisCentralizing sequence analysis
Centralizing sequence analysisDenis C. Bauer
 
Getting Memcached Secure
Getting Memcached SecureGetting Memcached Secure
Getting Memcached SecureKohei KaiGai
 
Oracle rac 10g best practices
Oracle rac 10g best practicesOracle rac 10g best practices
Oracle rac 10g best practicesHaseeb Alam
 
ASPLOS2011 workshop RESoLVE "Effect of Disk Prefetching of Guest OS "
ASPLOS2011 workshop RESoLVE "Effect of Disk Prefetching of Guest OS "ASPLOS2011 workshop RESoLVE "Effect of Disk Prefetching of Guest OS "
ASPLOS2011 workshop RESoLVE "Effect of Disk Prefetching of Guest OS "Kuniyasu Suzaki
 
A framework for distributed control and building performance simulation
A framework for distributed control and building performance simulationA framework for distributed control and building performance simulation
A framework for distributed control and building performance simulationDaniele Gianni
 
OpenStack at Xen summit Asia
OpenStack at Xen summit Asia OpenStack at Xen summit Asia
OpenStack at Xen summit Asia Jaesuk Ahn
 
Scalable Web Solutions - Use Case: Regulatory Reform In Vietnam On eZ Publish...
Scalable Web Solutions - Use Case: Regulatory Reform In Vietnam On eZ Publish...Scalable Web Solutions - Use Case: Regulatory Reform In Vietnam On eZ Publish...
Scalable Web Solutions - Use Case: Regulatory Reform In Vietnam On eZ Publish...Ivo Lukač
 
Denial of Service in Software Defined Netoworks
Denial of Service in Software Defined NetoworksDenial of Service in Software Defined Netoworks
Denial of Service in Software Defined NetoworksMohammad Faraji
 
Microx - A Unix like kernel for Embedded Systems written from scratch.
Microx - A Unix like kernel for Embedded Systems written from scratch.Microx - A Unix like kernel for Embedded Systems written from scratch.
Microx - A Unix like kernel for Embedded Systems written from scratch.Waqar Sheikh
 
OpenSearchLab and the Lucene Ecosystem
OpenSearchLab and the Lucene EcosystemOpenSearchLab and the Lucene Ecosystem
OpenSearchLab and the Lucene EcosystemGrant Ingersoll
 
Mastering PostgreSQL Administration
Mastering PostgreSQL AdministrationMastering PostgreSQL Administration
Mastering PostgreSQL AdministrationCommand Prompt., Inc
 
Mastering PostgreSQL Administration
Mastering PostgreSQL AdministrationMastering PostgreSQL Administration
Mastering PostgreSQL AdministrationEDB
 
DBArtisan® vs Quest Toad with DB Admin Module
DBArtisan® vs Quest Toad with DB Admin ModuleDBArtisan® vs Quest Toad with DB Admin Module
DBArtisan® vs Quest Toad with DB Admin ModuleEmbarcadero Technologies
 
linux software architecture
linux software architecture linux software architecture
linux software architecture Sneha Ramesh
 
Shared personalization service. How to scale to 15 k rps (Patrice Pelland)
Shared personalization service. How to scale to 15 k rps (Patrice Pelland)Shared personalization service. How to scale to 15 k rps (Patrice Pelland)
Shared personalization service. How to scale to 15 k rps (Patrice Pelland)Ontico
 
Netapp Deduplication concepts
Netapp Deduplication conceptsNetapp Deduplication concepts
Netapp Deduplication conceptsSaroj Sahu
 
2014 04-03 xyratex event
2014 04-03 xyratex event2014 04-03 xyratex event
2014 04-03 xyratex eventShawn Wells
 
Initial review of Firebird 3
Initial review of Firebird 3Initial review of Firebird 3
Initial review of Firebird 3Mind The Firebird
 

Similar to SE-PostgreSQL System-Wide Access Control (20)

Centralizing sequence analysis
Centralizing sequence analysisCentralizing sequence analysis
Centralizing sequence analysis
 
Getting Memcached Secure
Getting Memcached SecureGetting Memcached Secure
Getting Memcached Secure
 
Oracle rac 10g best practices
Oracle rac 10g best practicesOracle rac 10g best practices
Oracle rac 10g best practices
 
ASPLOS2011 workshop RESoLVE "Effect of Disk Prefetching of Guest OS "
ASPLOS2011 workshop RESoLVE "Effect of Disk Prefetching of Guest OS "ASPLOS2011 workshop RESoLVE "Effect of Disk Prefetching of Guest OS "
ASPLOS2011 workshop RESoLVE "Effect of Disk Prefetching of Guest OS "
 
A framework for distributed control and building performance simulation
A framework for distributed control and building performance simulationA framework for distributed control and building performance simulation
A framework for distributed control and building performance simulation
 
OpenStack at Xen summit Asia
OpenStack at Xen summit Asia OpenStack at Xen summit Asia
OpenStack at Xen summit Asia
 
Scalable Web Solutions - Use Case: Regulatory Reform In Vietnam On eZ Publish...
Scalable Web Solutions - Use Case: Regulatory Reform In Vietnam On eZ Publish...Scalable Web Solutions - Use Case: Regulatory Reform In Vietnam On eZ Publish...
Scalable Web Solutions - Use Case: Regulatory Reform In Vietnam On eZ Publish...
 
Denial of Service in Software Defined Netoworks
Denial of Service in Software Defined NetoworksDenial of Service in Software Defined Netoworks
Denial of Service in Software Defined Netoworks
 
Microx - A Unix like kernel for Embedded Systems written from scratch.
Microx - A Unix like kernel for Embedded Systems written from scratch.Microx - A Unix like kernel for Embedded Systems written from scratch.
Microx - A Unix like kernel for Embedded Systems written from scratch.
 
OpenSearchLab and the Lucene Ecosystem
OpenSearchLab and the Lucene EcosystemOpenSearchLab and the Lucene Ecosystem
OpenSearchLab and the Lucene Ecosystem
 
Mastering PostgreSQL Administration
Mastering PostgreSQL AdministrationMastering PostgreSQL Administration
Mastering PostgreSQL Administration
 
Mastering PostgreSQL Administration
Mastering PostgreSQL AdministrationMastering PostgreSQL Administration
Mastering PostgreSQL Administration
 
Introduction to SELinux Part-I
Introduction to SELinux Part-IIntroduction to SELinux Part-I
Introduction to SELinux Part-I
 
DBArtisan® vs Quest Toad with DB Admin Module
DBArtisan® vs Quest Toad with DB Admin ModuleDBArtisan® vs Quest Toad with DB Admin Module
DBArtisan® vs Quest Toad with DB Admin Module
 
linux software architecture
linux software architecture linux software architecture
linux software architecture
 
Shared personalization service. How to scale to 15 k rps (Patrice Pelland)
Shared personalization service. How to scale to 15 k rps (Patrice Pelland)Shared personalization service. How to scale to 15 k rps (Patrice Pelland)
Shared personalization service. How to scale to 15 k rps (Patrice Pelland)
 
Netapp Deduplication concepts
Netapp Deduplication conceptsNetapp Deduplication concepts
Netapp Deduplication concepts
 
Icme2011 industrial poster
Icme2011 industrial posterIcme2011 industrial poster
Icme2011 industrial poster
 
2014 04-03 xyratex event
2014 04-03 xyratex event2014 04-03 xyratex event
2014 04-03 xyratex event
 
Initial review of Firebird 3
Initial review of Firebird 3Initial review of Firebird 3
Initial review of Firebird 3
 

More from Kohei KaiGai

20221116_DBTS_PGStrom_History
20221116_DBTS_PGStrom_History20221116_DBTS_PGStrom_History
20221116_DBTS_PGStrom_HistoryKohei KaiGai
 
20221111_JPUG_CustomScan_API
20221111_JPUG_CustomScan_API20221111_JPUG_CustomScan_API
20221111_JPUG_CustomScan_APIKohei KaiGai
 
20211112_jpugcon_gpu_and_arrow
20211112_jpugcon_gpu_and_arrow20211112_jpugcon_gpu_and_arrow
20211112_jpugcon_gpu_and_arrowKohei KaiGai
 
20210928_pgunconf_hll_count
20210928_pgunconf_hll_count20210928_pgunconf_hll_count
20210928_pgunconf_hll_countKohei KaiGai
 
20210731_OSC_Kyoto_PGStrom3.0
20210731_OSC_Kyoto_PGStrom3.020210731_OSC_Kyoto_PGStrom3.0
20210731_OSC_Kyoto_PGStrom3.0Kohei KaiGai
 
20210511_PGStrom_GpuCache
20210511_PGStrom_GpuCache20210511_PGStrom_GpuCache
20210511_PGStrom_GpuCacheKohei KaiGai
 
20210301_PGconf_Online_GPU_PostGIS_GiST_Index
20210301_PGconf_Online_GPU_PostGIS_GiST_Index20210301_PGconf_Online_GPU_PostGIS_GiST_Index
20210301_PGconf_Online_GPU_PostGIS_GiST_IndexKohei KaiGai
 
20201128_OSC_Fukuoka_Online_GPUPostGIS
20201128_OSC_Fukuoka_Online_GPUPostGIS20201128_OSC_Fukuoka_Online_GPUPostGIS
20201128_OSC_Fukuoka_Online_GPUPostGISKohei KaiGai
 
20201113_PGconf_Japan_GPU_PostGIS
20201113_PGconf_Japan_GPU_PostGIS20201113_PGconf_Japan_GPU_PostGIS
20201113_PGconf_Japan_GPU_PostGISKohei KaiGai
 
20201006_PGconf_Online_Large_Data_Processing
20201006_PGconf_Online_Large_Data_Processing20201006_PGconf_Online_Large_Data_Processing
20201006_PGconf_Online_Large_Data_ProcessingKohei KaiGai
 
20200828_OSCKyoto_Online
20200828_OSCKyoto_Online20200828_OSCKyoto_Online
20200828_OSCKyoto_OnlineKohei KaiGai
 
20200806_PGStrom_PostGIS_GstoreFdw
20200806_PGStrom_PostGIS_GstoreFdw20200806_PGStrom_PostGIS_GstoreFdw
20200806_PGStrom_PostGIS_GstoreFdwKohei KaiGai
 
20200424_Writable_Arrow_Fdw
20200424_Writable_Arrow_Fdw20200424_Writable_Arrow_Fdw
20200424_Writable_Arrow_FdwKohei KaiGai
 
20191211_Apache_Arrow_Meetup_Tokyo
20191211_Apache_Arrow_Meetup_Tokyo20191211_Apache_Arrow_Meetup_Tokyo
20191211_Apache_Arrow_Meetup_TokyoKohei KaiGai
 
20191115-PGconf.Japan
20191115-PGconf.Japan20191115-PGconf.Japan
20191115-PGconf.JapanKohei KaiGai
 
20190926_Try_RHEL8_NVMEoF_Beta
20190926_Try_RHEL8_NVMEoF_Beta20190926_Try_RHEL8_NVMEoF_Beta
20190926_Try_RHEL8_NVMEoF_BetaKohei KaiGai
 
20190925_DBTS_PGStrom
20190925_DBTS_PGStrom20190925_DBTS_PGStrom
20190925_DBTS_PGStromKohei KaiGai
 
20190909_PGconf.ASIA_KaiGai
20190909_PGconf.ASIA_KaiGai20190909_PGconf.ASIA_KaiGai
20190909_PGconf.ASIA_KaiGaiKohei KaiGai
 
20190516_DLC10_PGStrom
20190516_DLC10_PGStrom20190516_DLC10_PGStrom
20190516_DLC10_PGStromKohei KaiGai
 
20190418_PGStrom_on_ArrowFdw
20190418_PGStrom_on_ArrowFdw20190418_PGStrom_on_ArrowFdw
20190418_PGStrom_on_ArrowFdwKohei KaiGai
 

More from Kohei KaiGai (20)

20221116_DBTS_PGStrom_History
20221116_DBTS_PGStrom_History20221116_DBTS_PGStrom_History
20221116_DBTS_PGStrom_History
 
20221111_JPUG_CustomScan_API
20221111_JPUG_CustomScan_API20221111_JPUG_CustomScan_API
20221111_JPUG_CustomScan_API
 
20211112_jpugcon_gpu_and_arrow
20211112_jpugcon_gpu_and_arrow20211112_jpugcon_gpu_and_arrow
20211112_jpugcon_gpu_and_arrow
 
20210928_pgunconf_hll_count
20210928_pgunconf_hll_count20210928_pgunconf_hll_count
20210928_pgunconf_hll_count
 
20210731_OSC_Kyoto_PGStrom3.0
20210731_OSC_Kyoto_PGStrom3.020210731_OSC_Kyoto_PGStrom3.0
20210731_OSC_Kyoto_PGStrom3.0
 
20210511_PGStrom_GpuCache
20210511_PGStrom_GpuCache20210511_PGStrom_GpuCache
20210511_PGStrom_GpuCache
 
20210301_PGconf_Online_GPU_PostGIS_GiST_Index
20210301_PGconf_Online_GPU_PostGIS_GiST_Index20210301_PGconf_Online_GPU_PostGIS_GiST_Index
20210301_PGconf_Online_GPU_PostGIS_GiST_Index
 
20201128_OSC_Fukuoka_Online_GPUPostGIS
20201128_OSC_Fukuoka_Online_GPUPostGIS20201128_OSC_Fukuoka_Online_GPUPostGIS
20201128_OSC_Fukuoka_Online_GPUPostGIS
 
20201113_PGconf_Japan_GPU_PostGIS
20201113_PGconf_Japan_GPU_PostGIS20201113_PGconf_Japan_GPU_PostGIS
20201113_PGconf_Japan_GPU_PostGIS
 
20201006_PGconf_Online_Large_Data_Processing
20201006_PGconf_Online_Large_Data_Processing20201006_PGconf_Online_Large_Data_Processing
20201006_PGconf_Online_Large_Data_Processing
 
20200828_OSCKyoto_Online
20200828_OSCKyoto_Online20200828_OSCKyoto_Online
20200828_OSCKyoto_Online
 
20200806_PGStrom_PostGIS_GstoreFdw
20200806_PGStrom_PostGIS_GstoreFdw20200806_PGStrom_PostGIS_GstoreFdw
20200806_PGStrom_PostGIS_GstoreFdw
 
20200424_Writable_Arrow_Fdw
20200424_Writable_Arrow_Fdw20200424_Writable_Arrow_Fdw
20200424_Writable_Arrow_Fdw
 
20191211_Apache_Arrow_Meetup_Tokyo
20191211_Apache_Arrow_Meetup_Tokyo20191211_Apache_Arrow_Meetup_Tokyo
20191211_Apache_Arrow_Meetup_Tokyo
 
20191115-PGconf.Japan
20191115-PGconf.Japan20191115-PGconf.Japan
20191115-PGconf.Japan
 
20190926_Try_RHEL8_NVMEoF_Beta
20190926_Try_RHEL8_NVMEoF_Beta20190926_Try_RHEL8_NVMEoF_Beta
20190926_Try_RHEL8_NVMEoF_Beta
 
20190925_DBTS_PGStrom
20190925_DBTS_PGStrom20190925_DBTS_PGStrom
20190925_DBTS_PGStrom
 
20190909_PGconf.ASIA_KaiGai
20190909_PGconf.ASIA_KaiGai20190909_PGconf.ASIA_KaiGai
20190909_PGconf.ASIA_KaiGai
 
20190516_DLC10_PGStrom
20190516_DLC10_PGStrom20190516_DLC10_PGStrom
20190516_DLC10_PGStrom
 
20190418_PGStrom_on_ArrowFdw
20190418_PGStrom_on_ArrowFdw20190418_PGStrom_on_ArrowFdw
20190418_PGStrom_on_ArrowFdw
 

Recently uploaded

8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCRashishs7044
 
Intro to BCG's Carbon Emissions Benchmark_vF.pdf
Intro to BCG's Carbon Emissions Benchmark_vF.pdfIntro to BCG's Carbon Emissions Benchmark_vF.pdf
Intro to BCG's Carbon Emissions Benchmark_vF.pdfpollardmorgan
 
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCRashishs7044
 
Kenya’s Coconut Value Chain by Gatsby Africa
Kenya’s Coconut Value Chain by Gatsby AfricaKenya’s Coconut Value Chain by Gatsby Africa
Kenya’s Coconut Value Chain by Gatsby Africaictsugar
 
8447779800, Low rate Call girls in Tughlakabad Delhi NCR
8447779800, Low rate Call girls in Tughlakabad Delhi NCR8447779800, Low rate Call girls in Tughlakabad Delhi NCR
8447779800, Low rate Call girls in Tughlakabad Delhi NCRashishs7044
 
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607dollysharma2066
 
8447779800, Low rate Call girls in Rohini Delhi NCR
8447779800, Low rate Call girls in Rohini Delhi NCR8447779800, Low rate Call girls in Rohini Delhi NCR
8447779800, Low rate Call girls in Rohini Delhi NCRashishs7044
 
Lean: From Theory to Practice — One City’s (and Library’s) Lean Story… Abridged
Lean: From Theory to Practice — One City’s (and Library’s) Lean Story… AbridgedLean: From Theory to Practice — One City’s (and Library’s) Lean Story… Abridged
Lean: From Theory to Practice — One City’s (and Library’s) Lean Story… AbridgedKaiNexus
 
/:Call Girls In Indirapuram Ghaziabad ➥9990211544 Independent Best Escorts In...
/:Call Girls In Indirapuram Ghaziabad ➥9990211544 Independent Best Escorts In.../:Call Girls In Indirapuram Ghaziabad ➥9990211544 Independent Best Escorts In...
/:Call Girls In Indirapuram Ghaziabad ➥9990211544 Independent Best Escorts In...lizamodels9
 
RE Capital's Visionary Leadership under Newman Leech
RE Capital's Visionary Leadership under Newman LeechRE Capital's Visionary Leadership under Newman Leech
RE Capital's Visionary Leadership under Newman LeechNewman George Leech
 
BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,
BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,
BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,noida100girls
 
8447779800, Low rate Call girls in Saket Delhi NCR
8447779800, Low rate Call girls in Saket Delhi NCR8447779800, Low rate Call girls in Saket Delhi NCR
8447779800, Low rate Call girls in Saket Delhi NCRashishs7044
 
Progress Report - Oracle Database Analyst Summit
Progress Report - Oracle Database Analyst SummitProgress Report - Oracle Database Analyst Summit
Progress Report - Oracle Database Analyst SummitHolger Mueller
 
Annual General Meeting Presentation Slides
Annual General Meeting Presentation SlidesAnnual General Meeting Presentation Slides
Annual General Meeting Presentation SlidesKeppelCorporation
 
Vip Female Escorts Noida 9711199171 Greater Noida Escorts Service
Vip Female Escorts Noida 9711199171 Greater Noida Escorts ServiceVip Female Escorts Noida 9711199171 Greater Noida Escorts Service
Vip Female Escorts Noida 9711199171 Greater Noida Escorts Serviceankitnayak356677
 
Keppel Ltd. 1Q 2024 Business Update Presentation Slides
Keppel Ltd. 1Q 2024 Business Update Presentation SlidesKeppel Ltd. 1Q 2024 Business Update Presentation Slides
Keppel Ltd. 1Q 2024 Business Update Presentation SlidesKeppelCorporation
 
Call Girls in DELHI Cantt, ( Call Me )-8377877756-Female Escort- In Delhi / Ncr
Call Girls in DELHI Cantt, ( Call Me )-8377877756-Female Escort- In Delhi / NcrCall Girls in DELHI Cantt, ( Call Me )-8377877756-Female Escort- In Delhi / Ncr
Call Girls in DELHI Cantt, ( Call Me )-8377877756-Female Escort- In Delhi / Ncrdollysharma2066
 
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdf
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdfNewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdf
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdfKhaled Al Awadi
 
Contemporary Economic Issues Facing the Filipino Entrepreneur (1).pptx
Contemporary Economic Issues Facing the Filipino Entrepreneur (1).pptxContemporary Economic Issues Facing the Filipino Entrepreneur (1).pptx
Contemporary Economic Issues Facing the Filipino Entrepreneur (1).pptxMarkAnthonyAurellano
 
(8264348440) 🔝 Call Girls In Mahipalpur 🔝 Delhi NCR
(8264348440) 🔝 Call Girls In Mahipalpur 🔝 Delhi NCR(8264348440) 🔝 Call Girls In Mahipalpur 🔝 Delhi NCR
(8264348440) 🔝 Call Girls In Mahipalpur 🔝 Delhi NCRsoniya singh
 

Recently uploaded (20)

8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
 
Intro to BCG's Carbon Emissions Benchmark_vF.pdf
Intro to BCG's Carbon Emissions Benchmark_vF.pdfIntro to BCG's Carbon Emissions Benchmark_vF.pdf
Intro to BCG's Carbon Emissions Benchmark_vF.pdf
 
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
 
Kenya’s Coconut Value Chain by Gatsby Africa
Kenya’s Coconut Value Chain by Gatsby AfricaKenya’s Coconut Value Chain by Gatsby Africa
Kenya’s Coconut Value Chain by Gatsby Africa
 
8447779800, Low rate Call girls in Tughlakabad Delhi NCR
8447779800, Low rate Call girls in Tughlakabad Delhi NCR8447779800, Low rate Call girls in Tughlakabad Delhi NCR
8447779800, Low rate Call girls in Tughlakabad Delhi NCR
 
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
 
8447779800, Low rate Call girls in Rohini Delhi NCR
8447779800, Low rate Call girls in Rohini Delhi NCR8447779800, Low rate Call girls in Rohini Delhi NCR
8447779800, Low rate Call girls in Rohini Delhi NCR
 
Lean: From Theory to Practice — One City’s (and Library’s) Lean Story… Abridged
Lean: From Theory to Practice — One City’s (and Library’s) Lean Story… AbridgedLean: From Theory to Practice — One City’s (and Library’s) Lean Story… Abridged
Lean: From Theory to Practice — One City’s (and Library’s) Lean Story… Abridged
 
/:Call Girls In Indirapuram Ghaziabad ➥9990211544 Independent Best Escorts In...
/:Call Girls In Indirapuram Ghaziabad ➥9990211544 Independent Best Escorts In.../:Call Girls In Indirapuram Ghaziabad ➥9990211544 Independent Best Escorts In...
/:Call Girls In Indirapuram Ghaziabad ➥9990211544 Independent Best Escorts In...
 
RE Capital's Visionary Leadership under Newman Leech
RE Capital's Visionary Leadership under Newman LeechRE Capital's Visionary Leadership under Newman Leech
RE Capital's Visionary Leadership under Newman Leech
 
BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,
BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,
BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,
 
8447779800, Low rate Call girls in Saket Delhi NCR
8447779800, Low rate Call girls in Saket Delhi NCR8447779800, Low rate Call girls in Saket Delhi NCR
8447779800, Low rate Call girls in Saket Delhi NCR
 
Progress Report - Oracle Database Analyst Summit
Progress Report - Oracle Database Analyst SummitProgress Report - Oracle Database Analyst Summit
Progress Report - Oracle Database Analyst Summit
 
Annual General Meeting Presentation Slides
Annual General Meeting Presentation SlidesAnnual General Meeting Presentation Slides
Annual General Meeting Presentation Slides
 
Vip Female Escorts Noida 9711199171 Greater Noida Escorts Service
Vip Female Escorts Noida 9711199171 Greater Noida Escorts ServiceVip Female Escorts Noida 9711199171 Greater Noida Escorts Service
Vip Female Escorts Noida 9711199171 Greater Noida Escorts Service
 
Keppel Ltd. 1Q 2024 Business Update Presentation Slides
Keppel Ltd. 1Q 2024 Business Update Presentation SlidesKeppel Ltd. 1Q 2024 Business Update Presentation Slides
Keppel Ltd. 1Q 2024 Business Update Presentation Slides
 
Call Girls in DELHI Cantt, ( Call Me )-8377877756-Female Escort- In Delhi / Ncr
Call Girls in DELHI Cantt, ( Call Me )-8377877756-Female Escort- In Delhi / NcrCall Girls in DELHI Cantt, ( Call Me )-8377877756-Female Escort- In Delhi / Ncr
Call Girls in DELHI Cantt, ( Call Me )-8377877756-Female Escort- In Delhi / Ncr
 
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdf
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdfNewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdf
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdf
 
Contemporary Economic Issues Facing the Filipino Entrepreneur (1).pptx
Contemporary Economic Issues Facing the Filipino Entrepreneur (1).pptxContemporary Economic Issues Facing the Filipino Entrepreneur (1).pptx
Contemporary Economic Issues Facing the Filipino Entrepreneur (1).pptx
 
(8264348440) 🔝 Call Girls In Mahipalpur 🔝 Delhi NCR
(8264348440) 🔝 Call Girls In Mahipalpur 🔝 Delhi NCR(8264348440) 🔝 Call Girls In Mahipalpur 🔝 Delhi NCR
(8264348440) 🔝 Call Girls In Mahipalpur 🔝 Delhi NCR
 

SE-PostgreSQL System-Wide Access Control

  • 1. SE-PostgreSQL System-wide consistency of access control NEC OSS Promotion Center KaiGai Kohei <kaigai@ak.jp.nec.com>
  • 2. Self Introduction ▐ Name KaiGai Kohei ▐ Company NEC, OSS Promotion Center ▐ Works 7 years experiences of OSS development » SELinux » PostgreSQL » Memcached » Apache (mod_selinux) ▐ SE-PostgreSQL Project It enables to control accesses to database objects using a centralized security policy of SELinux. Launched at 2006, then I've worked together both of SELinux and PostgreSQL community. Now, under development as a plugin for PostgreSQL v9.1. Page 2 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
  • 3. Agenda 1. The Goal of this project 2. Architecture of SE-PostgreSQL 3. Playing with SE-PostgreSQL (demonstration) 4. Today, and the Future Page 3 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
  • 4. 1. The Goal of this Project
  • 5. An analogy on Filesystem and Database info System Filesystem asset call Permission Filesystem OS (Linux) info Database asset SQL ACLs Database RDBMS (PostgreSQL) User Process Request Object manager and Resource ▐ Same relationship on user processes, requests, object manager and information assets. ▐ Differences in the way to store and access them System call for Filesystem SQL for Databases ▐ Also differences in access control model. what does it make differences in the result? Page 5 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
  • 6. The Goal of this project (1/2) Human user Human user Both of them tries to Both of them tries to reference classified reference classified information, But access information, But access controls are independent. controls are independent. Login Login bash bash vi Filesystem vi Networks psql psql classified unclassified information information X-window PostgreSQL domain of inter process domain of classified processes communication channels unclassified processes Page 6 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
  • 7. Lack of conductor Page 7 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
  • 8. The Goal of this project (2/2) Human user a centralized security server Human user Security Policy SELinux Login Access control Login bash bash vi Filesystem vi Networks psql psql classified unclassified information information X-window PostgreSQL domain of inter process domain of classified processes communication channels unclassified processes Page 8 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
  • 9. OT: LAMP/SELinux Security Policy SELinux domain of domain of classified processes Access control unclassified processes classified unclassified information information Filesystem Networks web application Memcached PostgreSQL web application mod_selinux.so Apache/httpd Page 9 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
  • 10. SELinux as a Security Server (1/3) ▐ Interactions with object managers Kernel subsystems do queries via LSM. Userspace applications do queries via libselinux. Both of them control user's requests according to the decision. ▐ Security context as a common identifier system_u:system_r:postgresql_t:s0 system_u:object_r:sepgsql_table_t:s0 A short formatted text, independent from object classes. ▐ Security policy A massive set of access control rules. A rule describes a set of actions to be allowed on a pair of a security context of the subject (process being accessing) and a security context of the object being accessed. Page 10 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
  • 11. SELinux as a Security Server (2/3) ▐ Case of Linux Kernel staff_u:staff_r:staff_t:s0 user_u:user_r:user_t:s0 write(2) write(2) read(2) read(2) user process A Subject: user process B Subject: user_u:user_r:user_t:s0 user_u:user_r:user_t:s0 Applications Object: user_u:object_r:user_home_t:s0 Linux kernel Object: user_u:object_r:user_home_t:s0 Target class: file Target class: file VFS LSM Security Policy file:{getattr read write ...} file:{getattr read write ...} SELinux File X File Y system_u:object_r:etc_t:s0 user_u:object_r:user_home_t:s0 Page 11 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
  • 12. SELinux as a Security Server (3/3) ▐ Case of PostgreSQL staff_u:staff_r:staff_t:s0 user_u:user_r:user_t:s0 UPDATE UPDATE SELECT SELECT user process A Subject: user process B Subject: user_u:user_r:user_t:s0 user_u:user_r:user_t:s0 Applications PostgreSQL Object: user_u:object_r:user_table_t:s0 Linux kernel Object: user_u:object_r:user_table_t:s0 Target class: db_table Target class: db_table libselinux Query Executor SE-PgSQL Security Policy db_table:{select update ...} db_table:{select update ...} SELinux Table X Table Y user_u:object_r:user_table_t:s0 system_u:object_r:sepgsql_ro_table_t:s0 Page 12 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
  • 13. 2. Architecture of SE-PostgreSQL
  • 14. What was necessary to be enhanced SELECT * FROM 1. Security Hooks t1 WHERE x = 2; 2. Pg_seclabel system catalog 3. SQL statement support 4. An intermediator module DB Authentication SECURITY LABEL SECURITY LABEL statement support statement support libselinux Query Parser SE-PgSQL Security Policy Plugin Query Executor SELinux Pg_seclabel User Tables System Catalogs PostgreSQL Linux kernel Page 14 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
  • 15. Idea of External Security Provider ▐ Background Earlier version of SE-PostgreSQL was launched at 2006 Not an easy path to get merged, because of ... • A large scale patch, even if minimum functionalities • Few people are familiar with SELinux in PgSQL community • Being not neutral to other security mechanism ▐ Idea of External Security Provider (ESP) Similar idea to LSM, XACE PG provides a set of security hooks which allow third party plugins to make its access control decision. • The patch can be broken up to smaller pieces. • SELinux specific code can be moved into the plugin modules. • Being open to the upcoming other security models The first version of ESP shall be bundled in v9.1. Page 15 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
  • 16. Security Hooks (1/2) bool ExecCheckRTPerms(List *rangeTable, bool ereport_on_violation) { : if (ExecutorCheckPerms_hook) result = (*ExecutorCheckPerms_hook)(rangeTable, ereport_on_violation); return result; } bool sepgsql_relation_privileges(...) bool sepgsql_relation_privileges(...) ▐ ExecCheckRTPerms() It is a routine to check permissions on DMSs List of RangeTblEntry contains all the necessary information. • OID of the relation to be referenced • A flag of required privileges (e.g, ACL_SELECT, ACL_UPDATE, ...) The ESP hook allows plugins to make its access control decision. If violated, it raises and returns an error according to the spec. Page 16 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
  • 17. Security Hooks (2/2) staff_u:staff_r:staff_t:s0 getpeercon(3) getpeercon(3) SE-PgSQL IKE IKE Daemon Daemon user process Labeled IPsec connection PostgreSQL Authentication Hook ▐ SELinux provides labeled IPsec and getpeercon(3) IKE daemon delivers security context of the user process getpeercon(3) allows to retrieve the delivered security context requires: kernel >= 2.6.18, ipsec-tools >= 0.7.2 ▐ (Post) Authentication hook It allows ESP plugins to get control post database authentication. SE-PgSQL retrieve security context of the peer process, as privileges of the client. Page 17 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
  • 18. Pg_seclabel system catalog postgres=# SELECT * FROM pg_catalog.pg_seclabel; reloid | objoid | subid | tag | label --------+--------+-------+---------+--------------------------------------- 1259 | 2619 | 0 | selinux | system_u:object_r:sepgsql_sysobj_t:s0 1259 | 2619 | -7 | selinux | system_u:object_r:sepgsql_sysobj_t:s0 1259 | 2619 | -6 | selinux | system_u:object_r:sepgsql_sysobj_t:s0 1259 | 2619 | -5 | selinux | system_u:object_r:sepgsql_sysobj_t:s0 : : : : : Pg_seclabel catalog reloid objoid subid label 1259 1234 0 system_u:object_r:sepgsql_table_t:s0 1259 5468 0 system_u:object_r:sepgsql_ro_table_t:s0 table X (OID = 1234) 1259 5468 4 system_u:object_r:sepgsql_ro_column_t:s0 1255 8901 0 system_u:object_r:sepgsql_proc_exec_t:s0 Pg_proc catalog table Y (OID = 5468) SQL function Z Pg_class catalog (OID = 8901) Page 18 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
  • 19. SECURITY LABEL statement SECURITY LABEL [ FOR <provider> ] ON <objtype> <objname> IS <security label> ▐ This new SQL syntax provides an interface to change security label of database objects. ▐ ESP can validate the supplied label and check user's privileges. postgres=# SECURITY LABEL ON TABLE t1 IS 'system_u:object_r:sepgsql_ro_table_t:s0'; LOG: SELinux: allowed { setattr relabelfrom } scontext=unconfined_u:unconfined_r:unconfined_t:s0 tcontext=system_u:object_r:sepgsql_table_t:s0 tclass=db_table name=t1 LOG: SELinux: allowed { relabelto } scontext=unconfined_u:unconfined_r:unconfined_t:s0 tcontext=system_u:object_r:sepgsql_ro_table_t:s0 tclass=db_table name=t1 SECURITY LABEL Page 19 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
  • 20. OT: Default security context on table creation ▐ DefineRelation() also calls ESP plugin ... 1. to check permission of table creation 2. to get security context to be assigned on the new table ▐ A table has its security context on its creation time, then user can relabel it using SECURITY LABEL statement. CREATE TABLE SQL Parser ① Permission checks ① Permission checks statement properties properties of new table ② Compute a default ② Compute a default of new table security context security context DefineRelation() ESP Hook plugin (sepgsql.so) User create Classified Table Classified Table New Table Page 20 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
  • 21. As an intermediator between PgSQL and SELinux getpeercon(3) sbj: user_u:user_r:user_t:s0 sbj: user_u:user_r:user_t:s0 obj: system_u:object_r:sepgsql_table_t:s0 obj: system_u:object_r:sepgsql_table_t:s0 class: db_table class: db_table Pg_seclabel scontext libselinux tcontext policy invocations via hook query sepgsql.so decision selinux OID of table, OID of table, Query types,... Query types,... db_table:{ select update ... }} db_table:{ select update ... ▐ sepgsql.so is the ESP plugin of SE-PostgreSQL ▐ It interprets a term of PgSQL into a term of SELinux OID of the table security context of the table ACL_SELECT db_table:{select} permission ▐ Then, it interprets SELinux's decision into status of PgSQL. access denied ereport(ERROR, ...) Page 21 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
  • 22. OT: Userspace access vector cache (avc) ▐ security_compute_xxx() always invokes a system-call AVC enables to cache access control decisions recently used. Query Query avc_has_perms() Memory Memory reference reference validation check of Decision selinux_kernel_status Decision userspace cache mmap(2) still valid invalid reset avc cache /selinux/status lookup an avc entry from the cache /selinux/access In heuristic, In heuristic, not found Found the rate to hit /selinux/create the rate to hit make an avc entry overs 99.9% overs 99.9% System System call call check access permissions Security Policy validation check of SELinux still valid userspace cache invalid Page 22 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
  • 23. 3. Playing with SE-PostgreSQL (demonstration)
  • 24. 4. Today and the Future
  • 25. Current status of SE-PostgreSQL ▐ Under development based on the v9.1 ▐ Works in completion Security hook on DML permission checks ▐ Works in progress Pg_seclabel and security label support Security hook on authentication Security hook on table creation we have discussion on the CommitFest-2nd ▐ Source of the SE-PgSQL plugin http://code.google.com/p/sepgsql/ Page 25 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
  • 26. Future works of SE-PostgreSQL ▐ Comprehensive security hooks ▐ Backup/Restore support ▐ Trusted Procedure ▐ Security label of user tuples ▐ Row-level access control ▐ Integration with system audit Page 26 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-
  • 27. Our Information Assets over the Cloud Web applications Memcached (selinux_engine) SE-PostgreSQL Linux(SELinux) Web server as system platform (Apache + mod_selinux) ▐ Information assets getting consolidated at somewhere in the cloud We can reference them anywhere, anytime, and anybody? ▐ Need to ensure both of data sharing and separation at the same time. System-wide consistency of access control on such a complex system Page 27 LinuxCon Japan/Tokyo 2010, SE-PostgreSQL -System wide consistenct of Access control-