Integrity-Organization Based Access Control for Critical Infrastructure Systems

Abstract : The organization-based access control (OrBAC) model is an access control model that helps evaluate the security policies of organizations. OrBAC affords a high degree of expressiveness and scalability. The model, however, does not readily express integrity constraints. Integrity is one of the most important properties for critical infrastructure systems, mainly due to their criticality and low tolerance of corruption and alterations. This paper describes an extension of OrBAC, called Integrity-OrBAC (I-OrBAC), which models integrity attributes associated with critical infrastructure systems. I-OrBAC facilitates the modeling of multiple integrity levels to express the requirements of different critical infrastructure organizations. An example security policy is presented to demonstrate the expressiveness of the model.
Document type :
Conference papers
Complete list of metadatas

Cited literature [16 references]  Display  Hide  Download

https://hal.inria.fr/hal-01483818
Contributor : Hal Ifip <>
Submitted on : Monday, March 6, 2017 - 3:01:59 PM
Last modification on : Friday, August 9, 2019 - 3:18:07 PM
Long-term archiving on : Wednesday, June 7, 2017 - 2:21:13 PM

File

978-3-642-35764-0_3_Chapter.pd...
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Abdeljebar Ameziane El Hassani, Anas Abou El Kalam, Abdellah Ait Ouahman. Integrity-Organization Based Access Control for Critical Infrastructure Systems. 6th International Conference on Critical Infrastructure Protection (ICCIP), Mar 2012, Washington, DC, United States. pp.31-42, ⟨10.1007/978-3-642-35764-0_3⟩. ⟨hal-01483818⟩

Share

Metrics

Record views

299

Files downloads

128