Secure Remote Maintenance via Workflow-Driven Security Framework

2021 IEEE International Conference on Blockchain (Blockchain) Pub Date : 2021-12-01 DOI:10.1109/Blockchain53845.2021.00016

Prabhakaran Kasinathan, Davide Martintoni, Benedikt Hofmann, V. Senni, Martin Wimmer

{"title":"Secure Remote Maintenance via Workflow-Driven Security Framework","authors":"Prabhakaran Kasinathan, Davide Martintoni, Benedikt Hofmann, V. Senni, Martin Wimmer","doi":"10.1109/Blockchain53845.2021.00016","DOIUrl":null,"url":null,"abstract":"Remote Maintenance in collaborative manufacturing provides a lot of benefits such as reduced downtime in manufacturing operations. But at the same time, it increases the attack-surface by opening new attack paths to strictly controlled network zones. In this paper, we analyse a real-world cross-organizational remote maintenance scenario by collecting security requirements (e.g., authentication, authorization, and auditability), and present a workflow-based approach to model and formally enforce access control for that scenario. The proposed approach leverages the Workflow-Driven Security Framework (WDSF) to enforce the least privilege principle; to ensure workflow integrity and separation of duties, (i.e., business process enforcement and compliance); to protect the confidentiality and integrity of sensitive information; and to provide traceability and non-repudiation in case of root-cause analysis. The WDSF uses Petri Nets (PN) to model and enforce the workflow, and blockchain and smart contracts to guarantee accountability and traceability of workflow events. The Petri Nets workflows are modelled and validated using the WoPeD tool.","PeriodicalId":372721,"journal":{"name":"2021 IEEE International Conference on Blockchain (Blockchain)","volume":"2 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 IEEE International Conference on Blockchain (Blockchain)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/Blockchain53845.2021.00016","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

Abstract

Remote Maintenance in collaborative manufacturing provides a lot of benefits such as reduced downtime in manufacturing operations. But at the same time, it increases the attack-surface by opening new attack paths to strictly controlled network zones. In this paper, we analyse a real-world cross-organizational remote maintenance scenario by collecting security requirements (e.g., authentication, authorization, and auditability), and present a workflow-based approach to model and formally enforce access control for that scenario. The proposed approach leverages the Workflow-Driven Security Framework (WDSF) to enforce the least privilege principle; to ensure workflow integrity and separation of duties, (i.e., business process enforcement and compliance); to protect the confidentiality and integrity of sensitive information; and to provide traceability and non-repudiation in case of root-cause analysis. The WDSF uses Petri Nets (PN) to model and enforce the workflow, and blockchain and smart contracts to guarantee accountability and traceability of workflow events. The Petri Nets workflows are modelled and validated using the WoPeD tool.

查看原文本刊更多论文

通过工作流驱动的安全框架实现安全的远程维护

协作制造中的远程维护提供了许多好处，例如减少制造操作中的停机时间。但与此同时，它通过向严格控制的网络区域开放新的攻击路径，增加了攻击面。在本文中，我们通过收集安全需求(例如，身份验证、授权和可审核性)来分析一个真实的跨组织远程维护场景，并提出一种基于工作流的方法来为该场景建模并正式实施访问控制。提出的方法利用工作流驱动的安全框架(WDSF)来执行最小特权原则;确保工作流程的完整性和职责分离(即，业务流程的执行和遵从);保护敏感资料的机密性和完整性;并在根本原因分析的情况下提供可追溯性和不可否认性。WDSF使用Petri网(PN)来建模和执行工作流，并使用区块链和智能合约来保证工作流事件的问责性和可追溯性。Petri网工作流程使用wop工具进行建模和验证。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2021 IEEE International Conference on Blockchain (Blockchain)

自引率

0.00%

发文量