On the description of access control policies in networked industrial systems

Author

Cheminod, M. ; Durante, Luca ; Seno, Lucia ; Valenzano, Adriano

Author_Institution

IEIIT, Turin, Italy

fYear

2014

fDate

5-7 May 2014

Firstpage

1

Lastpage

10

Abstract

The specification and verification of access control policies are fundamental steps in the process of securing industrial control systems and critical infrastructures. The focus of this paper is on bridging the semantic gap between high-level access control policies specified in the Role-Based Access Control (RBAC) framework and the low-level security mechanisms actually implemented in the physical system. Our approach is based on a novel kind of model, which includes two distinct views of the system, namely an RBAC-based specification and a low-level system description. The descriptive capabilities of the model are presented through an example derived from a real prototype plant for printed circuit boards re-manufacturing/de-manufacturing.

Keywords

access control; printed circuit manufacture; RBAC framework; RBAC-based specification; access control policies description; access control policies specification; access control policies verification; high-level access control policies; industrial control systems process; low-level security mechanisms; networked industrial systems; physical system; printed circuit boards remanufacturing-demanufacturing; role-based access control; Access control; Integrated circuit modeling; Ports (Computers); Process control; Servers; Software;

fLanguage

English

Publisher

ieee

Conference_Titel

Factory Communication Systems (WFCS), 2014 10th IEEE Workshop on

Conference_Location

Toulouse

Type

conf

DOI

10.1109/WFCS.2014.6837594

Filename

6837594