-- Task 4.3 - Crutial - CRitical Utility InfrastructurAL resilience

Task 4.3

Protection mechanisms

This task will first develop a framework to express a global security policy for the various organisations involved in the infrastructure, according to the various roles of the members of these organisations interacting with the infrastructure and their activity. This framework will probably be based on the OrBAC (Organisation-Based Access Control) security model, which enables to express security policy rules (permissions, interdictions, obligations) at a high level of abstraction, and to derive concrete access control decisions on fine grain accesses. OrBAC allows also composing the security policies of various organisations into one global policy, and gives flexibility to cope with organisation changes, including dynamic changes of context (e.g., emergency).



Powered by Nukedit - Web Content Management