DocumentCode
619650
Title
Integrity-OrBAC: An OrBAC enhancement that takes into account integrity
Author
El Kalam, Anas Abou ; El Hassani, A.A. ; Ouahman, Abdellah Ait
Author_Institution
ENSA Marrakesh, Cadi Ayyad Univ., Marrakesh, Morocco
fYear
2013
fDate
8-9 May 2013
Firstpage
1
Lastpage
7
Abstract
OrBAC is becoming more successful thanks to the various benefits it offers. However, it does not enable expressing the different facets of integrity, an essential property for critical infrastructures (CIs). In this paper, we propose "IntegrityOrBAC", an OrBAC enhancement that takes into account integrity while expressing local security policies. We start, first, by focusing on the CIs integrity need and then we recall briefly the OrBAC model concepts. After that, we detail the I-OrBAC model by defining a lexicon related to the different integrity variations to better appreciate the importance of this property in the case of CIs. Next, we justify why we opt for multi integrity levels approach, we present the I-OrBAC components and then show an example of a policy expressed thanks to the proposed model. We also emphasize the flexibility offered by I-OrBAC.
Keywords
authorisation; computational linguistics; critical infrastructures; data integrity; CI integrity; I-OrBAC component; I-OrBAC model; OrBAC enhancement; OrBAC model concept; account integrity; critical infrastructure; lexicon; multiintegrity level approach; security policy; Abstracts; Collaboration; OrBAC; access control models and policies; credibility; criticality; integrity levels;
fLanguage
English
Publisher
ieee
Conference_Titel
Intelligent Systems: Theories and Applications (SITA), 2013 8th International Conference on
Conference_Location
Rabat
Print_ISBN
978-1-4799-0297-2
Type
conf
DOI
10.1109/SITA.2013.6560820
Filename
6560820
Link To Document