Aspect-Oriented Adaptation of Access Control Rules

Tomas Bures, Ilias Gerostathopoulos, Petr Hnetynka, Stephan Seifermann, Maximilian Walter, Robert Heinrich

Research output: Chapter in Book / Report / Conference proceedingConference contributionAcademicpeer-review

Abstract

Cyber-physical systems (CPS) and IoT systems are nowadays commonly designed as self-adaptive, endowing them with the ability to dynamically reconFigure to reflect their changing environment. This adaptation concerns also the security, as one of the most important properties of these systems. Though the state of the art on adaptivity in terms of security related to these systems can often deal well with fully anticipated situations in the environment, it becomes a challenge to deal with situations that are not or only partially anticipated. This uncertainty is however omnipresent in these systems due to humans in the loop, open-endedness and only partial understanding of the processes happening in the environment. In this paper, we partially address this challenge by featuring an approach for tackling access control in face of partially unanticipated situations. We base our solution on special kind of aspects that build on existing access control system and create a second level of adaptation that addresses the partially unanticipated situations by modifying access control rules. The approach is based on our previous work where we have analyzed and classified uncertainty in security and trust in such systems and have outlined the idea of access-control related situational patterns. The aspects that we present in this paper serve as means for application-specific specialization of the situational patterns. We showcase our approach on a simplified but real-life example in the domain of Industry 4.0 that comes from one of our industrial projects.

Original languageEnglish
Title of host publication2021 47th Euromicro Conference on Software Engineering and Advanced Applications (SEAA)
Subtitle of host publication[Proceedings]
EditorsMaria Teresa Baldassarre, Giuseppe Scanniello, Amund Skavhaug
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages363-370
Number of pages8
ISBN (Electronic)9781665427050
ISBN (Print)9781665427067
DOIs
Publication statusPublished - 27 Oct 2021
Event47th Euromicro Conference on Software Engineering and Advanced Applications, SEAA 2021 - Palermo, Italy
Duration: 1 Sept 20213 Sept 2021

Conference

Conference47th Euromicro Conference on Software Engineering and Advanced Applications, SEAA 2021
Country/TerritoryItaly
CityPalermo
Period1/09/213/09/21

Bibliographical note

Funding Information:
This work has been funded by the DFG (German Research Foundation)– project number 432576552, HE8596/1-1 (FluidTrust), supported by the Czech Science Foundation project 20-24814J, and also partially supported by Charles University institutional funding SVV 260451 and the KASTEL institutional funding.

Publisher Copyright:
© 2021 IEEE.

Keywords

  • access control
  • aspect-oriented
  • security
  • Self-adaptive systems

Fingerprint

Dive into the research topics of 'Aspect-Oriented Adaptation of Access Control Rules'. Together they form a unique fingerprint.

Cite this