Aspect-Oriented Adaptation of Access Control Rules

Result code in IS VaVaI

<a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F00216208%3A11320%2F21%3A10438222" target="_blank" >RIV/00216208:11320/21:10438222 - isvavai.cz</a>

Result on the web

<a href="https://doi.org/10.1109/SEAA53835.2021.00054" target="_blank" >https://doi.org/10.1109/SEAA53835.2021.00054</a>

DOI - Digital Object Identifier

<a href="http://dx.doi.org/10.1109/SEAA53835.2021.00054" target="_blank" >10.1109/SEAA53835.2021.00054</a>

Result language

angličtina

Original language name

Aspect-Oriented Adaptation of Access Control Rules

Original language description

Cyber-physical systems (CPS) and IoT systems are nowadays commonly designed as self-adaptive, endowing them with the ability to dynamically reconFigure to reflect their changing environment. This adaptation concerns also the security, as one of the most important properties of these systems. Though the state of the art on adaptivity in terms of security related to these systems can often deal well with fully anticipated situations in the environment, it becomes a challenge to deal with situations that are not or only partially anticipated. This uncertainty is however omnipresent in these systems due to humans in the loop, open-endedness and only partial understanding of the processes happening in the environment. In this paper, we partially address this challenge by featuring an approach for tackling access control in face of partially unanticipated situations. We base our solution on special kind of aspects that build on existing access control system and create a second level of adaptation that addresses the partially unanticipated situations by modifying access control rules. The approach is based on our previous work where we have analyzed and classified uncertainty in security and trust in such systems and have outlined the idea of access-control related situational patterns. The aspects that we present in this paper serve as means for application-specific specialization of the situational patterns. We showcase our approach on a simplified but real-life example in the domain of Industry 4.0 that comes from one of our industrial projects.

Czech name

—

Czech description

—

Type

D - Article in proceedings

CEP classification

—

OECD FORD branch

10201 - Computer sciences, information science, bioinformathics (hardware development to be 2.2, social aspect to be 5.8)

Project

<a href="/en/project/GC20-24814J" target="_blank" >GC20-24814J: FluidTrust – Enabling trust by fluid access control to data and physical resources in Industry 4.0 systems</a><br>

Continuities

P - Projekt vyzkumu a vyvoje financovany z verejnych zdroju (s odkazem do CEP)

Publication year

2021

Confidentiality

S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů

Article name in the collection

Proceedings 2021 47th Euromicro Conference on Software Engineering and Advanced Applications

ISBN

978-1-66542-705-0

ISSN

—

e-ISSN

—

Number of pages

8

Pages from-to

363-370

Publisher name

IEEE

Place of publication

USA

Event location

Palermo, Italy

Event date

Sep 1, 2021

Type of event by nationality

WRD - Celosvětová akce

UT code for WoS article

—