For Publishers
DiscoveryMetadataPeer reviewHostingPublishing
For Researchers
JoinPublishReviewCollect
Register
Blog
About
Search
Advanced search
My ScienceOpen
Search
For Publishers
For Researchers
Blog
About
907
views
8
references
 Top references
cited by
0
    
0 reviews
 Review
0
comments
 Comment
0
recommends
+1 Recommend
1 collections
    0
    shares
      403
      similar
       All similar

      Celebrating 65 years of The Computer Journal - free-to-read perspectives - bcs.org/tcj65

      scite_
       
      • Record: found
      • Abstract: found
      • Conference Proceedings: found
      Is Open Access

      A Model for the Analysis of Security Policies in Industrial Networks

      proceedings-article
      Author(s): 1 , 1 , 1 , 2 , 1
      Publication date (Print):
      Conference name: 1st International Symposium for ICS & SCADA Cyber Security Research 2013 (ICS-CSR 2013) (ICSCSR)
      Conference theme: ICS & SCADA Cyber Security Research 2013
      Conference date: 16-17 September 2013
      Keywords: Role Based Access Control, Security policy analysis, Security of industrial networks
      Bookmark

            Abstract

            The analysis of security policies designed for ICS and SCADA can benefit significantly from the adoption of automatic/semi-automatic software tools that are able to work at a global (system) level. This implies the availability of a suitablemodel of the system, which is able to combine the abstractions used in the definition of policies with the access control and right management mechanisms usually present in the real system implementation. This paper introduces a modeling framework based on the Role Based Access Control (RBAC) technique that includes all the elements needed to support different kinds of automatic security analyses such as policy coherence checks and verifications of correct implementation of policies.

            Content

            Author and article information

            Contributors
            Ivan Cibrario Bertolotti
            Luca Durante
            Tingting Hu
            Adriano Valenzano
            Conference
            Publication date: September 2013
            Publication date (Print): September 2013
            Pages: 66-77
            Affiliations
            [1 ]National Research Council of Italy – IEIIT

            c.so Duca degli Abruzzi 24

            I-10129 Torino

            Italy

            www.ieiit.cnr.it
            [2 ]Politecnico di Torino – DAUIN

            c.so Duca degli Abruzzi 24

            I-10129 Torino

            Italy

            www.ieiit.cnr.it
            Article
            DOI: 10.14236/ewic/ICSCSR2013.8
            SO-VID: 52514dc4-5fb7-4625-a287-29276f5f03a2
            Copyright © © Ivan Cibrario Bertolotti et al. Published by BCS Learning and Development Ltd. 1st International Symposium for ICS & SCADA Cyber Security Research 2013 (ICS-CSR 2013), Leicester, UK
            License:

            This work is licensed under a Creative Commons Attribution 4.0 Unported License. To view a copy of this license, visit http://creativecommons.org/licenses/by/4.0/

            Conference name: 1st International Symposium for ICS & SCADA Cyber Security Research 2013 (ICS-CSR 2013)
            Conference acronym: ICSCSR
            Conference number: 1
            Conference location: Leicester, UK
            Conference date: 16-17 September 2013
            Conference sponsor: Electronic Workshops in Computing (eWiC)
            Conference theme: ICS & SCADA Cyber Security Research 2013
            History
            Product

            1477-9358 BCS Learning & Development

            Self URI (article page): https://www.scienceopen.com/hosted-document?doi=10.14236/ewic/ICSCSR2013.8
            Self URI (journal page): https://ewic.bcs.org/
            Categories
            Series title: Electronic Workshops in Computing

            ScienceOpen disciplines: Applied computer science,Computer science,Security & Cryptology,Graphics & Multimedia design,General computer science,Human-computer-interaction
            Keywords: Security policy analysis,Security of industrial networks,Role Based Access Control

            Comments

            Comment on this article