Tr-OrBAC: A trust model for collaborative systems within critical infrastructures

Benali

Bellafkih

et al. 2020

IJNVO

Self Cite

Due to physical and logical vulnerabilities, a critical infrastructure (CI) can encounter failures of various degrees of severity, and since there are many interdependencies between CIs, simple failures can have dramatic consequences on the whole infrastructure. In this paper, we mainly focus on malicious threats that might affect the communication and information systems (the critical information infrastructure, or CII) dedicated to critical infrastructures. We define a new collaborative access control framework called PolyOrBAC, to address the security problems that are specific of CIIs. This approach offers each organisation taking part in the CII the capacity of collaborating with the other ones, while maintaining a control on its resources and on its internal security policy. The approach is demonstrated on a practical scenario, based on real emergency actions in an electric power grid infrastructure.

Section: Conclusion and Extensionsmentioning

confidence: 99%

Unified enterprise modelling language-based interoperability for collaborative access control framework in critical infrastructures

Benali

Bellafkih

et al. 2020

IJNVO

Self Cite

“…This request is shared in the IMS network between the various CSCF servers (1,2,3,4) until the S-CSCF which contacts the concerned provider in order to establish the collaboration (5,6). In this sense, the S-CSCF recovers the user profile and the customer history from the HSS (7) in order to send the necessary information to the provider (8).…”

Section: Integration Of the Proposed Solution In The Ims Networkmentioning

confidence: 99%

“…In this paper, we focus on presenting the security challenges in different stages: (1) establishing collaboration, (2) controlling access to different services and resources, (3) respecting the customer privacy, (4) managing and evaluating the reliability of the customers who ask the access. Thus, we present our trust model: Tr-OrBAC [7]; It was developed mainly to ensure the security of the collaborative systems within Critical Infrastructures (CI) [8].…”

Section: Introductionmentioning

confidence: 99%

Trust Management Approach for Securingthe Services Access:Telecom OperatorsCollaborations in IMS Network

Aali

Echabbi

2019

JMM

Self Cite

IP Multimedia Subsystem (IMS) network presents a new generation in the telecommunication infrastructure by providing a variety of services whatever the used technologies. Therefore, to make the customers satisfied, their telecom operator provides them several services according to their attached user profile (subscription type). However, some services are not hosted by the home operator; the service providers are responsible to present these services to the customers. In this case, the operator contacts the concerned provider for requesting the access to the desired services. In fact, this access may arise some security issues which affect the customer privacy and the services security. In this paper, we project our approach, Tr-OrBAC, in the context of collaboration between service providers and telecom operators. We discuss the case when the customer wishes to access to a service hosted by an external service provider. We present the encountered security problems. Then, we depict and we detail the functioning of our approach to resolve these problems.

“…Each organization must secure its information system by applying the suitable security techniques, the most important are: the trust management and the access control, seen their usefulness in collaborative systems success. Tr-OrBAC [11] proposes to combine trust management with access control by integrating a new variable in the generated security rules of OrBAC model. This variable presents a combination between calculated trust parameters such as; satisfaction, reputation and recommendation.…”

Section: A Presentation Of Tr-orbacmentioning

confidence: 99%

Evaluation of interaction messages in trust model within collaborative system

Aali

2016 International Conference on Information Technology for Organizations Development (IT4OD)

Echabbi

2016

Self Cite

the success of collaborative systems has become necessary due to the important role of these systems as they ensure the continuity of Critical Infrastructures. Among the aspects, enabling the success of collaborative systems is their security against all threats. In this paper, we focus on a new model allowing security and protection of collaborative systems within critical infrastructures. Tr-OrBAC is a combination between the access control and the trust evaluation. The principle is to add a new trust parameter in the security rules generated by OrBAC model. Our goal in this paper is to evaluate the interaction messages between the different actors involved in the collaboration. We will present the existing models, and then we will discuss the steps used to implement our model, using different tools (UML, Eclipse).