Integrity-OrBAC: An OrBAC enhancement that takes into account integrity

被引:0
作者
Abou El Kalam, A. [1 ]
El Hassani, A. A. [1 ]
Ouahman, A. Ait [1 ]
机构
[1] Cadi Ayyad Univ, ENSA Marrakesh, Marrakech, Morocco
来源
2013 8TH INTERNATIONAL CONFERENCE ON INTELLIGENT SYSTEMS: THEORIES AND APPLICATIONS (SITA) | 2013年
关键词
OrBAC; access control models and policies; integrity levels; credibility; criticality;
D O I
暂无
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
OrBAC is becoming more successful thanks to the various benefits it offers. However, it does not enable expressing the different facets of integrity, an essential property for critical infrastructures (CIs). In this paper, we propose "Integrity-OrBAC", an OrBAC enhancement that takes into account integrity while expressing local security policies. We start, first, by focusing on the CIs integrity need and then we recall briefly the OrBAC model concepts. After that, we detail the I-OrBAC model by defining a lexicon related to the different integrity variations to better appreciate the importance of this property in the case of CIs. Next, we justify why we opt for multi integrity levels approach, we present the I-OrBAC components and then show an example of a policy expressed thanks to the proposed model. We also emphasize the flexibility offered by I-OrBAC.
引用
收藏
页数:7
相关论文
共 22 条
[1]  
Abou El Kalam A., 2009, INT J CRITICAL INFRA, V2
[2]  
Abou El Kalam A., 2003, 4 INTERNATIONALWORKS
[3]  
Abou El Kalam A., 2008, 3 INTERNATIONALWORKS
[4]  
Abou El Kalam A., 2006, 8 IEEE INT S SYST IN
[5]  
[Anonymous], HDB INFORM SECURITY
[6]  
[Anonymous], ACM T INFORM SYSTEM
[7]  
Baina A., 2008, 2 ANN IFIP 11 10 C C
[8]  
Bell D., 1975, ESDTR75306 MITRE
[9]  
BENFERHAT S, 2003, 8 ACM S ACC CONTR MO
[10]  
Biba K., 1977, ESDTR76372 ESDAFSC H
123