Prabhakaran Kasinathan, Davide Martintoni, Benedikt Hofmann, V. Senni, Martin Wimmer
{"title":"通过工作流驱动的安全框架实现安全的远程维护","authors":"Prabhakaran Kasinathan, Davide Martintoni, Benedikt Hofmann, V. Senni, Martin Wimmer","doi":"10.1109/Blockchain53845.2021.00016","DOIUrl":null,"url":null,"abstract":"Remote Maintenance in collaborative manufacturing provides a lot of benefits such as reduced downtime in manufacturing operations. But at the same time, it increases the attack-surface by opening new attack paths to strictly controlled network zones. In this paper, we analyse a real-world cross-organizational remote maintenance scenario by collecting security requirements (e.g., authentication, authorization, and auditability), and present a workflow-based approach to model and formally enforce access control for that scenario. The proposed approach leverages the Workflow-Driven Security Framework (WDSF) to enforce the least privilege principle; to ensure workflow integrity and separation of duties, (i.e., business process enforcement and compliance); to protect the confidentiality and integrity of sensitive information; and to provide traceability and non-repudiation in case of root-cause analysis. The WDSF uses Petri Nets (PN) to model and enforce the workflow, and blockchain and smart contracts to guarantee accountability and traceability of workflow events. The Petri Nets workflows are modelled and validated using the WoPeD tool.","PeriodicalId":372721,"journal":{"name":"2021 IEEE International Conference on Blockchain (Blockchain)","volume":"2 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"Secure Remote Maintenance via Workflow-Driven Security Framework\",\"authors\":\"Prabhakaran Kasinathan, Davide Martintoni, Benedikt Hofmann, V. Senni, Martin Wimmer\",\"doi\":\"10.1109/Blockchain53845.2021.00016\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Remote Maintenance in collaborative manufacturing provides a lot of benefits such as reduced downtime in manufacturing operations. But at the same time, it increases the attack-surface by opening new attack paths to strictly controlled network zones. In this paper, we analyse a real-world cross-organizational remote maintenance scenario by collecting security requirements (e.g., authentication, authorization, and auditability), and present a workflow-based approach to model and formally enforce access control for that scenario. The proposed approach leverages the Workflow-Driven Security Framework (WDSF) to enforce the least privilege principle; to ensure workflow integrity and separation of duties, (i.e., business process enforcement and compliance); to protect the confidentiality and integrity of sensitive information; and to provide traceability and non-repudiation in case of root-cause analysis. The WDSF uses Petri Nets (PN) to model and enforce the workflow, and blockchain and smart contracts to guarantee accountability and traceability of workflow events. The Petri Nets workflows are modelled and validated using the WoPeD tool.\",\"PeriodicalId\":372721,\"journal\":{\"name\":\"2021 IEEE International Conference on Blockchain (Blockchain)\",\"volume\":\"2 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-12-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2021 IEEE International Conference on Blockchain (Blockchain)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/Blockchain53845.2021.00016\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 IEEE International Conference on Blockchain (Blockchain)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/Blockchain53845.2021.00016","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Secure Remote Maintenance via Workflow-Driven Security Framework
Remote Maintenance in collaborative manufacturing provides a lot of benefits such as reduced downtime in manufacturing operations. But at the same time, it increases the attack-surface by opening new attack paths to strictly controlled network zones. In this paper, we analyse a real-world cross-organizational remote maintenance scenario by collecting security requirements (e.g., authentication, authorization, and auditability), and present a workflow-based approach to model and formally enforce access control for that scenario. The proposed approach leverages the Workflow-Driven Security Framework (WDSF) to enforce the least privilege principle; to ensure workflow integrity and separation of duties, (i.e., business process enforcement and compliance); to protect the confidentiality and integrity of sensitive information; and to provide traceability and non-repudiation in case of root-cause analysis. The WDSF uses Petri Nets (PN) to model and enforce the workflow, and blockchain and smart contracts to guarantee accountability and traceability of workflow events. The Petri Nets workflows are modelled and validated using the WoPeD tool.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
