Abstract
Cyber-physical systems (CPS) and IoT systems are nowadays commonly designed as self-adaptive, endowing them with the ability to dynamically reconFigure to reflect their changing environment. This adaptation concerns also the security, as one of the most important properties of these systems. Though the state of the art on adaptivity in terms of security related to these systems can often deal well with fully anticipated situations in the environment, it becomes a challenge to deal with situations that are not or only partially anticipated. This uncertainty is however omnipresent in these systems due to humans in the loop, open-endedness and only partial understanding of the processes happening in the environment. In this paper, we partially address this challenge by featuring an approach for tackling access control in face of partially unanticipated situations. We base our solution on special kind of aspects that build on existing access control system and create a second level of adaptation that addresses the partially unanticipated situations by modifying access control rules. The approach is based on our previous work where we have analyzed and classified uncertainty in security and trust in such systems and have outlined the idea of access-control related situational patterns. The aspects that we present in this paper serve as means for application-specific specialization of the situational patterns. We showcase our approach on a simplified but real-life example in the domain of Industry 4.0 that comes from one of our industrial projects.
Original language | English |
---|---|
Title of host publication | 2021 47th Euromicro Conference on Software Engineering and Advanced Applications (SEAA) |
Subtitle of host publication | [Proceedings] |
Editors | Maria Teresa Baldassarre, Giuseppe Scanniello, Amund Skavhaug |
Publisher | Institute of Electrical and Electronics Engineers Inc. |
Pages | 363-370 |
Number of pages | 8 |
ISBN (Electronic) | 9781665427050 |
ISBN (Print) | 9781665427067 |
DOIs | |
Publication status | Published - 27 Oct 2021 |
Event | 47th Euromicro Conference on Software Engineering and Advanced Applications, SEAA 2021 - Palermo, Italy Duration: 1 Sept 2021 → 3 Sept 2021 |
Conference
Conference | 47th Euromicro Conference on Software Engineering and Advanced Applications, SEAA 2021 |
---|---|
Country/Territory | Italy |
City | Palermo |
Period | 1/09/21 → 3/09/21 |
Bibliographical note
Funding Information:This work has been funded by the DFG (German Research Foundation)– project number 432576552, HE8596/1-1 (FluidTrust), supported by the Czech Science Foundation project 20-24814J, and also partially supported by Charles University institutional funding SVV 260451 and the KASTEL institutional funding.
Publisher Copyright:
© 2021 IEEE.
Keywords
- access control
- aspect-oriented
- security
- Self-adaptive systems