Abstract | ||
---|---|---|
Modern decentralized and distributed environments, as typical from IoT or Industry 4.0 architectures, require a more advanced and granular security management than the currently available standard access control methodologies. Obligations, as defined by the Usage Control model, have been introduced to enhance the traditional access control security mechanisms by imposing the execution of policy-determined actions. This paper presents an extension of the architecture of the Usage Control system already existing in literature, which aims at formalizing the management of Obligations. Three additional components, naturally integrated within the Usage Control system, verify and/or ensure the correct enforcement of obligations also allowing their effect to be evaluated in the continuous access decision making process. The proposed extension thus allows to verify complex conditions when evaluating obligation- specific attributes extracted from the domain where obligations are enforced or observed. |
Year | DOI | Venue |
---|---|---|
2019 | 10.1109/EMPDP.2019.8671586 | 2019 27th Euromicro International Conference on Parallel, Distributed and Network-Based Processing (PDP) |
Keywords | Field | DocType |
Standards,Authorization,Process control,Control systems,Protocols | Obligation,Architecture,Computer science,Computer security,Access control,Process control,Enforcement,Control system,Decision-making,Distributed computing,Security management | Conference |
ISSN | ISBN | Citations |
1066-6192 | 978-1-7281-1644-0 | 0 |
PageRank | References | Authors |
0.34 | 0 | 4 |
Name | Order | Citations | PageRank |
---|---|---|---|
Fabio Martinelli | 1 | 10 | 5.34 |
Paolo Mori | 2 | 212 | 19.83 |
Andrea Saracino | 3 | 158 | 23.42 |
Francesco Di Cerbo | 4 | 126 | 20.24 |