Skip to Main content Skip to Navigation
Theses

Vers un système d'administration de la sécurité pour les réseaux autonomes

Abstract : It is complex enough for humans to efficiently manage security in infrastructureless netwoeks. Our goal is to make this security management autonomic. In this context, our ph.d thesis proposes an autonomic access control system. We provide a definition of autonomic networks, and a set of bases of autonomic security. Afterwards, we define a type of autonomic networks that we call iorg-autonet (infrastructureless organizational autonomic network). The nodes of an iorg-autonet are classified according to three attributes: trustworthiness, availability and capabilities. This classification allows nodes to acquire different roles, and certain roles make certain nodes able to cooperate for managing the network. We define an access control model for iorg-autonets and we call it srbac (secure relation based access control). Its policies are applied during communications between any couple of nodes already bound by a secure relation assigning certain roles to them. Srbac is an enhanced, adapted version of rbac. We eventually propose an extension of the rbac profile of the specification language xacml v2.0 for writing srbac policies. We define for srbac the administrative counterpart model asrbac to achieve our autonomic access control system. Asrbac is an extension of the distributed administrative model arbac02, which is associated to rbac. This extension adds aspects of collaboration, context-awareness, self-awareness, adaptability and autonomic computing. Asrbac is based on srbac itself, which constitutes the basis of the autonomic hehavior in our solution. An example of an srbac/asrbac system of a home network, and an enforcement model point out and validate our contributions.
Complete list of metadatas

Cited literature [109 references]  Display  Hide  Download

https://pastel.archives-ouvertes.fr/pastel-00570696
Contributor : Mohamad Aljnidi <>
Submitted on : Tuesday, March 1, 2011 - 1:27:03 AM
Last modification on : Friday, July 31, 2020 - 10:44:07 AM
Long-term archiving on: : Sunday, December 4, 2016 - 4:12:23 AM

Identifiers

  • HAL Id : pastel-00570696, version 1

Collections

Citation

Mohamad Aljnidi. Vers un système d'administration de la sécurité pour les réseaux autonomes. Réseaux et télécommunications [cs.NI]. Télécom ParisTech, 2009. Français. ⟨pastel-00570696⟩

Share

Metrics

Record views

467

Files downloads

460