Paper Info
Title
Obligation Management in Usage Control Systems
Abstract
Modern decentralized and distributed environments, as typical from IoT or Industry 4.0 architectures, require a more advanced and granular security management than the currently available standard access control methodologies. Obligations, as defined by the Usage Control model, have been introduced to enhance the traditional access control security mechanisms by imposing the execution of policy-determined actions. This paper presents an extension of the architecture of the Usage Control system already existing in literature, which aims at formalizing the management of Obligations. Three additional components, naturally integrated within the Usage Control system, verify and/or ensure the correct enforcement of obligations also allowing their effect to be evaluated in the continuous access decision making process. The proposed extension thus allows to verify complex conditions when evaluating obligation- specific attributes extracted from the domain where obligations are enforced or observed.
Year
DOI
Venue
2019
10.1109/EMPDP.2019.8671586
2019 27th Euromicro International Conference on Parallel, Distributed and Network-Based Processing (PDP)
Keywords
Field
DocType
Standards,Authorization,Process control,Control systems,Protocols
Obligation,Architecture,Computer science,Computer security,Access control,Process control,Enforcement,Control system,Decision-making,Distributed computing,Security management
Conference
ISSN
ISBN
Citations 
1066-6192
978-1-7281-1644-0
0
PageRank 
References 
Authors
0.34
0
4
Name
Order
Citations
PageRank
Fabio Martinelli1105.34
Paolo Mori221219.83
Andrea Saracino315823.42
Francesco Di Cerbo412620.24