Günther Pernul scite author profile

The Digital Twin refers to a digital representation of any real-world counterpart allowing its management (from simple monitoring to autonomy). At the core of the concept lies the inclusion of the entire asset lifecycle. To enable all lifecycle parties to partake, the Digital Twin should provide a sharable data base. Thereby, integrity and confidentiality issues are pressing, turning security into a major requirement. However, given that the Digital Twin paradigm is still at an early stage, most works do not consider security yet. Distributed ledgers provide a novel technology for multi-party data sharing that emphasizes security features such as integrity. For this reason, we examine the applicability of distributed ledgers to secure Digital Twin data sharing. We contribute to current literature by identifying requirements for Digital Twin data sharing in order to overcome current infrastructural challenges. We furthermore propose a framework for secure Digital Twin data sharing based on Distributed Ledger Technology. A conclusive use case demonstrates requirements fulfillment and is followed by a critical discussion proposing avenues for future work.

show abstract

Security Operations Center: A Systematic Study and Open Challenges

Vielberth

Böhm

Fichtinger

et al. 2020

IEEE Access

View full text Add to dashboard Cite

Attribute-Based Authentication and Authorisation Infrastructures for E-Commerce Providers

Schläger

Sojer

Muschall

et al. 2006

View full text Add to dashboard Cite

Abstract. Authentication and authorisation has been a basic and necessary service for internet transactions. With the evolution of e-commerce, traditional mechanisms for data security and access control are becoming outdated. Several new standards have emerged which allow dynamic access control based on exchanging user attributes. Unfortunately, while providing highly secure and flexible access mechanisms is a very demanding task, it cannot be considered a core competency for most e-commerce corporations. Therefore, a need to outsource or at least share such services with other entities arises. Authentication and Authorisation Infrastructures (AAIs) can provide such integrated federations of security services. They could, in particular, provide attributebased access control (ABAC) mechanisms and mediate customers' demand for privacy and vendors' needs for information. We propose an AAI reference model that includes ABAC functionality based on the XACML standard and lessons learned from various existing AAIs. AAIs analysed are AKENTI, CARDEA, CAS, GridShib, Liberty ID-FF, Microsoft .NET Passport, PAPI, PERMIS, Shibboleth and VOMS.

show abstract

Viewing Business-Process Security from Different Perspectives

Herrmann¹,

Pernul²

1999

International Journal of Electronic Commerce

View full text Add to dashboard Cite

A Pattern System for Access Control

Priebe¹,

Fernández²,

Mehlau³

et al.

View full text Add to dashboard Cite

Abstract:In order to develop trustworthy information systems, security aspects should be considered from the early project stages. This is particularly true for authorization and access control services, which decide which users can access which parts of the system and in what ways. Software patterns have been used with success to encapsulate best practices in software design. A good collection of patterns is an invaluable aid in designing new systems by inexperienced developers and is also useful to teach and understand difficult problems. Following in this direction, this paper presents a pattern system to describe authorization and access control models. First, we present a set of patterns that include a basic authorization pattern that is the basis for patterns for the wellestablished discretionary and role-based access control models. Metadata access control models have appeared recently to address the high flexibility requirements of open, heterogeneous systems, such as enterprise or e-commerce portals. These models are complex and we use the basic patterns to develop a set of patterns for metadata-based access control.

show abstract

Digital Twin: Empowering Enterprises Towards a System-of-Systems Approach

Dietz

Pernul

2019

Bus Inf Syst Eng

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

334 Leonard St

Brooklyn, NY 11211

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Günther Pernul

EtherTwin: Blockchain-based Secure Digital Twin Information Management

Authentication and authorization infrastructures (AAIs): a comparative survey

A Distributed Ledger Approach to Digital Twin Secure Data Sharing

Security Operations Center: A Systematic Study and Open Challenges

Attribute-Based Authentication and Authorisation Infrastructures for E-Commerce Providers

Viewing Business-Process Security from Different Perspectives

A Pattern System for Access Control

Digital Twin: Empowering Enterprises Towards a System-of-Systems Approach

Contact Info

Product

Resources

About