Case Study for Collecting Policy Evaluation Factors upon Request when Creating XACML Policy

Oh, Yong-Taek; Lee, Scott Uk-Jin

doi:10.5626/jok.2018.45.9.975

Cited by 2 publications

(3 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Thus, within SealedGRID, we considered the use of eXtensible Access Control Markup Language (XACML) for devising RBAC policies. XACML [ 21 ] is based on XML, which is a language for access control, standardized by the OASIS consortium. The language supports most security policy languages and has standard extension points for defining new functions, data types, and policy combination logic, amongst others.…”

Section: Authorization Component Methodologymentioning

confidence: 99%

“…This is a reference in the sector to address the security of industrial networks, since it provides useful guidelines for introducing aspects related to authenticity, confidentiality, and integrity in the communication and control protocols of the smart grid. It is composed of eleven parts, where part eight is especially applied to control access mechanisms based on RBAC [8][9][10][11][12][13][14][15][16][17][18][19][20][21][22][23].…”

mentioning

confidence: 99%

See 1 more Smart Citation

SealedGRID: Secure and Interoperable Platform for Smart GRID Applications

Suciu¹,

Sachian²,

Vulpe

et al. 2021

Sensors

View full text Add to dashboard Cite

Recent advancements in information and communication technologies (ICT) have improved the power grid, leading to what is known as the smart grid, which, as part of a critical economic and social infrastructure, is vulnerable to security threats from the use of ICT and new emerging vulnerabilities and privacy issues. Access control is a fundamental element of a security infrastructure, and security is based on the principles of less privilege, zero-trust, and segregation of duties. This work addresses how access control can be applied without disrupting the power grid’s functioning while also properly maintaining the security, scalability, and interoperability of the smart grid. The authentication in the platform presumes digital certificates using a web of trust. This paper presents the findings of the SealedGRID project, and the steps taken for implementing Attribute-based access control policies specifically customized to the smart grid. The outcome is to develop a novel, hierarchical architecture composed of different licensing entities that manages access to resources within the network infrastructure. They are based on well-drawn policy rules and the security side of these resources is placed through a context awareness module. Together with this technology, the IoT is used with Big Data (facilitating easy handling of large databases). Another goal of this paper is to present implementation and evaluations details of a secure and scalable security platform for the smart grid.

show abstract

Section: Authorization Component Methodologymentioning

confidence: 99%

mentioning

confidence: 99%

SealedGRID: Secure and Interoperable Platform for Smart GRID Applications

Suciu¹,

Sachian²,

Vulpe

et al. 2021

Sensors

View full text Add to dashboard Cite

show abstract

“…The challenge in SealedGRID is represented by mapping the entities of the SealedGRID system to the usual components that are used to specify XACML policies. In XACML [13] four categories are defined:…”

Section: Policy Decision Points (Pdp)mentioning

confidence: 99%

Attribute-based Access Control for Secure and Resilient Smart Grids

Suciu¹,

Istrate²,

Vulpe

et al. 2019

Electronic Workshops in Computing

View full text Add to dashboard Cite

Recent advancements of Information and Communication Technologies (ICT) have made it a part of almost every domain of everyday life, including the power grid, leading to what is known as the Smart Grid. But the power grid, a critical economic and social infrastructure, is vulnerable to security threats stemming from the use of ICT and to new emerging vulnerabilities and privacy issues. Access control is a fundamental element of the security infrastructure, as, ideally, the principle of less privilege, zero-trust, segregation of duties, and other best practices should be applied without disrupting the functioning of the power grid while also properly maintaining the security of the Smart Grid. The paper presents the work undertaken in the SealedGRID project and the steps taken for implementing Attribute-based Access Control policies specifically tailored to the Smart Grid.

show abstract

Case Study for Collecting Policy Evaluation Factors upon Request when Creating XACML Policy

Cited by 2 publications

References 0 publications

SealedGRID: Secure and Interoperable Platform for Smart GRID Applications

SealedGRID: Secure and Interoperable Platform for Smart GRID Applications

Attribute-based Access Control for Secure and Resilient Smart Grids

Contact Info

Product

Resources

About