| BB category
|
SCOTT:Methodology for SW/HW development +
, SCOTT:SW component +
, Profile +
, Tool or tool chain +
, Interface +
, Standard +
, Means for establishing cross-domain interoperability +
, SCOTT:Other +
|
| Baseline
|
Attribute Based Access Control (ABAC) star … Attribute Based Access Control (ABAC) starts to penetrate the industry, and has been used especially in the health domain where fine grained access policies are needed. Industrial standards already exist, e.g., XACML and SAML, and industry standard implementations of ABAC also exist, e.g., Balana ...
We plan to include in ABAC notions from Semantic Technologies, e.g. ontologies for the specific domains that SCOTT works on, and reasoning engines like Protege. Semantic technologies are widely used in industries for and specific domains, with the purpose to provide amore structures way of managing and querying data. We want to use the powerful tools of ST in conjunction with ABAC models, to improve the flexibility of ABAC and ease the adoption by industry.of ABAC and ease the adoption by industry. +
|
| Current TRL
|
9 for Semantic Technologies <br />
9 for ABAC<br />
2-4 for S-ABAC. +
|
| Description
|
A Semantic Attribute based access control … A Semantic Attribute based access control provides the means for different actors having access to different types of information of a system. The former notation of Role-based access control (RBAC) is extended, where "role" is one attribute deciding on the access. As an example, your data of your "heat pump" (energy efficiency) are of interest for a) the house owner, b) the manufacturer, c) the municipalities, d) the maintenance company, e) the person renting the flat, f) the energy distributor. Which data (e.g. statistical) and who has access (attribute: grade of access: monitor, control, configure) might be subject to a security and privacy analysis (attribute: required security level). S-ABAC is seen as tool to provide the functionality, but needs R&I to become usable in a distributed cloud.I to become usable in a distributed cloud. +
|
| Lead partner
|
UiO +
|
| Leader
|
Christian Johansen +
|
| Main output
|
One output would be Ontologies related to … One output would be Ontologies related to Access Control for the specific domains that SCOTT works with.
Another output is a methodology and technology description for how to include semantic specifications, i.e., the above mentioned ontologies, in the ABAC model.
A third outcome would be a software implementation of a S-ABAC engine that would extend existing ABAC engine/framework with semantic reasoning tools and ontology editing capabilities. These software components would form the S-ABAC-framework and would include components like policy definition endpoint and tool including Semantic concepts, policy enforcement point, Attribute management point, etc.nt point, Attribute management point, etc. +
|
| Page Title
|
BB24.I Semantic Attribute Based Access Control (S-ABAC) +
|
| Partner
|
UiO +
, Wolffia +
, Smart Innovation Norway +
|
| Target TRL
|
Aim to reach TRL 6 for S-ABAC . +
|
| Technology Line
|
SCOTT:Distributed Cloud Integration +
|
| Title
|
Semantic Attribute Based Access Control (S-ABAC) +
|
| Workpackage
|
SCOTT:WP08 +
, SCOTT:WP11 +
, SCOTT:WP14 +
, SCOTT:WP15 +
, SCOTT:WP21 +
|
| Creation dateThis property is a special property in this wiki.
|
18 June 2017 11:10:47 +
|
| Has improper value forThis property is a special property in this wiki.
|
Workpackage +
|
| Categories |
Building Block +
|
| Modification dateThis property is a special property in this wiki.
|
7 May 2018 08:49:19 +
|
