PolyOrBAC: A security framework for Critical Infrastructures

Kalam, Anas Abou El; Deswarte, Yves; Baïna, Amine; Kaâniche, Mohamed

doi:10.1016/j.ijcip.2009.08.005

Cited by 45 publications

(21 citation statements)

References 27 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…However, one of the big drawbacks of this model, especially when talking about IoT environments, is that it is based on a totally centralized architecture and does not provide or support the distribution, collaboration and interoperability requirements. That said, several works have done in order to extend OrBAC to overcome these limitation: PolyOrBAC [27] deals with this problem by using the OrBAC model to manage the internal policies of each organization, but to ensure the collaboration aspect between organizations, web services technology was. Nevertheless, such technologies that PolyOrBAC uses (e.g.…”

Section: Organization Based Access Control (Orbac)mentioning

confidence: 99%

Dynamic Access Control Policy based on Blockchain and Machine Learning for the Internet of Things

Outchakoucht¹,

Es-Samaali²,

Leroy³

2017

ijacsa

119

View full text Add to dashboard Cite

Abstract-The Internet of Things (IoT) is now destroying the barriers between the real and digital worlds. However, one of the huge problems that can slow down the development of this global wave, or even stop it, concerns security and privacy requirements. The criticality of these latter comes especially from the fact that the smart objects may contain very intimate information or even may be responsible for protecting people's lives. In this paper, the focus is on access control in the IoT context by proposing a dynamic and fully distributed security policy. Our proposal will be based, on one hand, on the concept of the blockchain to ensure the distributed aspect strongly recommended in the IoT; and on the other hand on machine learning algorithms, particularly on reinforcement learning category, in order to provide a dynamic, optimized and selfadjusted security policy.

show abstract

Section: Organization Based Access Control (Orbac)mentioning

confidence: 99%

Dynamic Access Control Policy based on Blockchain and Machine Learning for the Internet of Things

Outchakoucht¹,

Es-Samaali²,

Leroy³

2017

ijacsa

119

View full text Add to dashboard Cite

show abstract

“…Other solutions can be integrated to increase the security level discussed in [58]. One consists of establishing a collaborative access control framework called PolyOrBAC.…”

Section: The Proposal In Multi-cloudsmentioning

confidence: 99%

New mechanism for Cloud Computing Storage Security

Mrabti¹,

Ammari²,

Kalam³

et al. 2016

ijacsa

View full text Add to dashboard Cite

Abstract-Cloud computing, often referred to as simply the cloud, appears as an emerging computing paradigm which promises to radically change the way computer applications and services are constructed, delivered, managed and finally guaranteed as dynamic computing environments for end users. The cloud is the delivery of on-demand computing resourceseverything from applications to data centers -over the Internet on a pay-for-use basis. The revolution of cloud computing has provided opportunities for research in all aspects of cloud computing. Despite the big progress in cloud computing technologies, funding concerns in cloud, security may limit a broader adoption. This paper presents a technique to tolerate both accidental and intentional faults, which is fragmentation-redundancy-scattering (FRS). The possibility to use the FRS technique as an intrusion tolerance one is investigated for providing secure and dependable storage in the cloud environment. Also a cloud computing security (CCS) based on the FRS technique is proposed to explore how this proposal can then be used via several scenarios. To demonstrate the robustness of the proposal, we formalize our design and we carry out a security as well as performance evaluations of the approach and we compare it with the classical model. The paper concludes by strongly suggesting future research proposals for the CCS framework.

show abstract

“…The main concepts introduced by OrBAC are the following: (1) activity, regrouping actions having common properties; (2) view, several objects having the same properties on which the same rules are applied; and (3) context, a concept dening the circumstances in which some security rules can be applied. The context allows the denition of specic security requirements directly at the OrBAC level.…”

Section: The Orbac Modelmentioning

confidence: 99%

“…The concept of organization in OrBAC provides means to better analyze interoperability and specication of hierarchies which, in turn, leads to a exible specication of collaborative work and information ow between dierent organizations (e.g., companies and institutions). The OrBAC formalism and the expressiveness of general-purpose ontologies can be combined in order of guaranteeing organization interoperability and collaboration [11,2]. Negative authorizations are also allowed in OrBAC, in order to specify complex policies.…”

Section: Open Problems and Limitationsmentioning

confidence: 99%