Title :
Integrity-OrBAC: An OrBAC enhancement that takes into account integrity
Author :
El Kalam, Anas Abou ; El Hassani, A.A. ; Ouahman, Abdellah Ait
Author_Institution :
ENSA Marrakesh, Cadi Ayyad Univ., Marrakesh, Morocco
Abstract :
OrBAC is becoming more successful thanks to the various benefits it offers. However, it does not enable expressing the different facets of integrity, an essential property for critical infrastructures (CIs). In this paper, we propose "IntegrityOrBAC", an OrBAC enhancement that takes into account integrity while expressing local security policies. We start, first, by focusing on the CIs integrity need and then we recall briefly the OrBAC model concepts. After that, we detail the I-OrBAC model by defining a lexicon related to the different integrity variations to better appreciate the importance of this property in the case of CIs. Next, we justify why we opt for multi integrity levels approach, we present the I-OrBAC components and then show an example of a policy expressed thanks to the proposed model. We also emphasize the flexibility offered by I-OrBAC.
Keywords :
authorisation; computational linguistics; critical infrastructures; data integrity; CI integrity; I-OrBAC component; I-OrBAC model; OrBAC enhancement; OrBAC model concept; account integrity; critical infrastructure; lexicon; multiintegrity level approach; security policy; Abstracts; Collaboration; OrBAC; access control models and policies; credibility; criticality; integrity levels;
Conference_Titel :
Intelligent Systems: Theories and Applications (SITA), 2013 8th International Conference on
Conference_Location :
Rabat
Print_ISBN :
978-1-4799-0297-2
DOI :
10.1109/SITA.2013.6560820
