Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Refine Auth Events #328

Merged
merged 4 commits into from
Dec 16, 2024
Merged

Refine Auth Events #328

merged 4 commits into from
Dec 16, 2024

Conversation

aamedina
Copy link
Collaborator

@aamedina aamedina commented Dec 12, 2024
edited
Loading

closes #327

Refine auth events for alignment with access control semantics

  • Removed domain and range constraints for d3fend-tactical-verb-property.
  • Removed domain and range of may-be-tactically-associated-with.
  • Introduced and detailed AccessControlAdministrationEvent, AccessControlEvent, AccessGrantedEvent, AccessDeniedEvent, AccessMediationEvent, PermissionGrantingEvent, and PermissionRevokingEvent.
  • Refactored LogonEvent and LogoffEvent with causal relationships and session participation.
  • Adjusted hierarchy of Authentication, Authorization, and ResourceAccess under DefensiveAction.
  • Refined AuthenticationEvent to include Agent and Credential participants.
  • Removed obsolete events such as AssignGroupsEvent and SessionAuthorizationEvent.
  • Updated UserAction with precise subclass restrictions.

@aamedina
remove range from d3f:accesses that infers all access is to a network…
3d277a1 
… resource
@aamedina
Refine auth events for alignment with access control semantics
9593a3f 
- Removed domain and range constraints for `d3fend-tactical-verb-property`.
- Adjusted domain and range of `may-be-tactically-associated-with` to `DefensiveAction` and `OffensiveAction`.
- Introduced and detailed `AccessControlAdministrationEvent`, `AccessControlEvent`, `AccessGrantedEvent`, `AccessDeniedEvent`, `AccessMediationEvent`, `PermissionGrantingEvent`, and `PermissionRevokingEvent`.
- Refactored `LogonEvent` and `LogoffEvent` with causal relationships and session participation.
- Adjusted hierarchy of `Authentication`, `Authorization`, and `ResourceAccess` under `DefensiveAction`.
- Refined `AuthenticationEvent` to include `Agent` and `Credential` participants.
- Removed obsolete events such as `AssignGroupsEvent` and `SessionAuthorizationEvent`.
- Updated `UserAction` with precise subclass restrictions.
@aamedina
revert resource access to be a user action
857dce8
@netfl0 netfl0 added this to the 1.0.0 milestone Dec 12, 2024
@netfl0 netfl0 marked this pull request as draft December 16, 2024 16:09
@netfl0 netfl0 marked this pull request as ready for review December 16, 2024 16:56
@netfl0 netfl0 merged commit f6b7218 into d3fend:develop Dec 16, 2024
1 check passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@netfl0 netfl0 netfl0 left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
1.0.0
Development

Successfully merging this pull request may close these issues.

Refine Auth Events
2 participants
@aamedina @netfl0