Autonomous Runtime Consumer Interface Generation and Deployment for Service Interoperability

Paniagua, Cristina; Delsing, Jerker

doi:10.21203/rs.3.rs-194135/v1

Cited by 1 publication

(2 citation statements)

References 28 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In this architecture, applications or systems provide and consume services via interfaces and protocols. Some of the key properties of SOA are late binding, autonomy, and push-pull behavior [3]. One of the core elements of an SOA is a mechanism for service discovery.…”

Section: Solution Architecturementioning

confidence: 99%

“…In the context of industrial data sharing and access control, Service-oriented architecture (SOA) can provide a flexible and scalable architecture that can adapt to the evolving needs of modern industrial systems [2] [3]. However, data source and user changes require administrative operations in the system to connect the new device or user identity with the access control policies to properly enforce access rights.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Automated Management of Attribute-Based Policies for Access Control Using Tag-Matching

Chiquito,

Bodin,

Schelén

2023

IECON 2023- 49th Annual Conference of the IEEE Industrial Electronics Society

View full text Add to dashboard Cite

Data sharing is becoming increasingly important as organizations seek to improve their operations and gain a competitive advantage. The data sharing between organizations, stakeholders, and even internal teams requires access control policies that define who can access what data, under what circumstances, and for what purposes. Attribute-based access control (ABAC) provides a flexible and fine-grained mechanism for enforcing such policies, preventing data leakage, and improving security and compliance. A challenge is that these policies should be able to support the agility and adaptability of constantly evolving modern industrial systems, where new data sources, services, and users are frequently added and removed. As the number of data sources and associated policies grows, the manual management of ABAC policies in evolving systems becomes a bottleneck, which prevents the adoption of fine-grained access control mechanisms. This paper presents a model based on tagmatching to automate the process of connecting new data sources and users to existing access control policies. In the proposed model, tag-matching means matching metadata elements to policy attributes to reduce the administrative work of managing access policies. The model takes advantage of the identity abstraction of ABAC policies to connect existing rules between attributes and the target resource or user. We present a proof-of-concept implementation of the tag-matching model in Eclipse Arrowhead and provide an evaluation of the proposed solution.

show abstract

Section: Solution Architecturementioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%