Kern, Alexander ; Anderl, Reiner (2018)
Using RBAC to Enforce the Principle of Least Privilege in Industrial Remote Maintenance Sessions.
In: 2018 Fifth International Conference on Internet of Things: Systems, Management and Security
Buchkapitel, Bibliographie
Dies ist die neueste Version dieses Eintrags.
Kurzbeschreibung (Abstract)
In recent years, digitalization is having a great impact on industry. Especially the rising degree of cross-linked machines is resulting in new business models and great economic advantages. One example is remote maintenance. It leads to less downtime and gained efficiency due to a quicker response time of highly qualified maintenance technicians. However, connecting industrial machines to WANs opens up new attack surfaces. In particular, machines with long lifetimes are often severely outdated since updates that might cause downtime stand in direct conflict to the central objective of availability. In case of remote maintenance, it additionally requires great trust in the external maintenance technician not to use the remote connection for wrong doing. On the market multiple solutions for securing remote maintenance sessions exist. However, these solutions mainly focus on network security and disregard system security entirely. Security doctrines such as the principle of least privilege should be used to enhance the system security. This paper focuses on system security of industrial machines and proposes the use of role based access control to confine users and attackers alike. This way, consequences of security breaches and wrong doing can be minimized. The scientific contribution is the development, implementation and assessment of a concept for the usage of RBAC on system level to solve current system security issues, with the focus on remote maintenance sessions.
| Typ des Eintrags: | Buchkapitel |
|---|---|
| Erschienen: | 2018 |
| Autor(en): | Kern, Alexander ; Anderl, Reiner |
| Art des Eintrags: | Bibliographie |
| Titel: | Using RBAC to Enforce the Principle of Least Privilege in Industrial Remote Maintenance Sessions |
| Sprache: | Englisch |
| Publikationsjahr: | 17 Oktober 2018 |
| Ort: | Valencia, Spain |
| Verlag: | IEEE |
| Buchtitel: | 2018 Fifth International Conference on Internet of Things: Systems, Management and Security |
| URL / URN: | https://ieeexplore.ieee.org/document/8554805 |
| Kurzbeschreibung (Abstract): | In recent years, digitalization is having a great impact on industry. Especially the rising degree of cross-linked machines is resulting in new business models and great economic advantages. One example is remote maintenance. It leads to less downtime and gained efficiency due to a quicker response time of highly qualified maintenance technicians. However, connecting industrial machines to WANs opens up new attack surfaces. In particular, machines with long lifetimes are often severely outdated since updates that might cause downtime stand in direct conflict to the central objective of availability. In case of remote maintenance, it additionally requires great trust in the external maintenance technician not to use the remote connection for wrong doing. On the market multiple solutions for securing remote maintenance sessions exist. However, these solutions mainly focus on network security and disregard system security entirely. Security doctrines such as the principle of least privilege should be used to enhance the system security. This paper focuses on system security of industrial machines and proposes the use of role based access control to confine users and attackers alike. This way, consequences of security breaches and wrong doing can be minimized. The scientific contribution is the development, implementation and assessment of a concept for the usage of RBAC on system level to solve current system security issues, with the focus on remote maintenance sessions. |
| Fachbereich(e)/-gebiet(e): | 16 Fachbereich Maschinenbau 16 Fachbereich Maschinenbau > Fachgebiet Datenverarbeitung in der Konstruktion (DiK) (ab 01.09.2022 umbenannt in "Product Life Cycle Management") |
| Hinterlegungsdatum: | 08 Feb 2019 08:00 |
| Letzte Änderung: | 08 Feb 2019 08:00 |
| PPN: | |
| Export: | |
| Suche nach Titel in: | TUfind oder in Google |
Verfügbare Versionen dieses Eintrags
- Using RBAC to Enforce the Principle of Least Privilege in Industrial Remote Maintenance Sessions. (deposited 08 Feb 2019 08:00) [Gegenwärtig angezeigt]
 |
Frage zum Eintrag |
Optionen (nur für Redakteure)
 |
Redaktionelle Details anzeigen |
Drucken
Impressum