• DocumentCode
    619650
  • Title

    Integrity-OrBAC: An OrBAC enhancement that takes into account integrity

  • Author

    El Kalam, Anas Abou ; El Hassani, A.A. ; Ouahman, Abdellah Ait

  • Author_Institution
    ENSA Marrakesh, Cadi Ayyad Univ., Marrakesh, Morocco
  • fYear
    2013
  • fDate
    8-9 May 2013
  • Firstpage
    1
  • Lastpage
    7
  • Abstract
    OrBAC is becoming more successful thanks to the various benefits it offers. However, it does not enable expressing the different facets of integrity, an essential property for critical infrastructures (CIs). In this paper, we propose "IntegrityOrBAC", an OrBAC enhancement that takes into account integrity while expressing local security policies. We start, first, by focusing on the CIs integrity need and then we recall briefly the OrBAC model concepts. After that, we detail the I-OrBAC model by defining a lexicon related to the different integrity variations to better appreciate the importance of this property in the case of CIs. Next, we justify why we opt for multi integrity levels approach, we present the I-OrBAC components and then show an example of a policy expressed thanks to the proposed model. We also emphasize the flexibility offered by I-OrBAC.
  • Keywords
    authorisation; computational linguistics; critical infrastructures; data integrity; CI integrity; I-OrBAC component; I-OrBAC model; OrBAC enhancement; OrBAC model concept; account integrity; critical infrastructure; lexicon; multiintegrity level approach; security policy; Abstracts; Collaboration; OrBAC; access control models and policies; credibility; criticality; integrity levels;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Intelligent Systems: Theories and Applications (SITA), 2013 8th International Conference on
  • Conference_Location
    Rabat
  • Print_ISBN
    978-1-4799-0297-2
  • Type

    conf

  • DOI
    10.1109/SITA.2013.6560820
  • Filename
    6560820