Title :
Dynamic Security Modeling in Risk Management Using Environmental Knowledge
Author :
Fugini, Mariagrazia ; Hadjichristofi, G. ; Teimourikia, Mahsa
Author_Institution :
Dept. of Electron., Inf. & Bioeng., Politec. di Milano, Milan, Italy
Abstract :
This paper presents the design principles for dynamic security modeling in risk-prone environments, where elements of the environment to be protected are classified in Contexts and are monitored and geo-referenced. Based on a motivating scenario, the security model elements are introduced building on the ABAC (Attribute Based Access Control) paradigm. Dynamicity is integrated into the model to make it self-adaptable to dynamic changes in the environment conditions, including the occurrence of risks and emergencies. The model aims at dynamically authorizing subjects to access diverse data and physical objects (resources) based on adaptive activation/deactivation of security rules and changes in subject or object attributes, while still preserving the need-to-know principle.
Keywords :
authorisation; risk management; ABAC paradigm; attribute based access control; dynamic security modeling; environmental knowledge; motivating scenario; object attributes; risk management; risk-prone environment; security rules activation; security rules deactivation; subject attributes; Access control; Adaptation models; Airports; Context; Context modeling; Monitoring; adaptive security; context; dynamic access rules; environment; risk;
Conference_Titel :
WETICE Conference (WETICE), 2014 IEEE 23rd International
Conference_Location :
Parma
DOI :
10.1109/WETICE.2014.42
