Securing Controls Middleware of the Large Hadron Collider

Authors

  • Ilia Yastrebov CERN, Geneva 23
  • Natalia Yastrebova CERN, Geneva 23

Keywords:

Role-based access control, information security, equipment protection, middleware, distributed systems

Abstract

The distributed control system of the Large Hadron Collider (LHC) presents many challenges due to its inherent heterogeneity and highly dynamic nature. One critical challenge is providing access control guarantees within the middleware. Role-based access control (RBAC) is a good candidate to provide access control. However, in an equipment control system transactions are often dependent on user context and device context. Unfortunately, classic RBAC cannot be used to handle the above requirements. In this paper we present an extended role-based access control model called CMW-RBAC. This new model incorporates the advantages of role-based permission administration together with a fine-grained control of dynamic context attributes. We also propose a new technique called dynamic authorization that allows phased introduction of access control in large distributed systems. This paper also describes motivation of the project, requirements, and overview of its main components: authentication and authorization.

Downloads

Download data is not yet available.

Downloads

Published

2013-01-24

How to Cite

Yastrebov, I., & Yastrebova, N. (2013). Securing Controls Middleware of the Large Hadron Collider. Computing and Informatics, 31(6), 1151–1172. Retrieved from http://147.213.75.17/ojs/index.php/cai/article/view/1302