The POLIPO Security Framework

Daniel Trivellato, Sandro Etalle, Erik Luit, Nicola Zannone

    Research output: Chapter in Book/Report/Conference proceedingChapterAcademicpeer-review

    24 Downloads (Pure)

    Abstract

    Systems of systems are dynamic coalitions of distributed, autonomous and heterogeneous systems that collaborate to achieve a common goal. While offering several advantages in terms of scalability and flexibility, the systems of systems paradigm has a significant impact on systems interoperability and on the security requirements of the collaborating systems. In this chapter we introduce POLIPO, a security framework that protects the information exchanged among the systems in a system of systems, while preserving systems’ autonomy and interoperability. Information is protected from unauthorized access and improper modification by combining context-aware access control with trust management. Autonomy and interoperability are enabled by the use of ontology-based services. More precisely, each authority may refer to different ontologies to define the semantics of the terms used in the security policy of the system it governs and to describe domain knowledge and context information. A semantic alignment technique is then employed to map concepts from different ontologies and align the systems’ vocabularies. We demonstrate the applicability of our solution with a prototype implementation of the framework for a scenario in the maritime safety and security domain.
    Original languageUndefined
    Title of host publicationSituation Awareness with Systems of Systems
    Place of PublicationNew York
    PublisherSpringer
    Pages189-208
    Number of pages20
    ISBN (Print)978-1-4614-6229-3
    DOIs
    Publication statusPublished - 2013

    Publication series

    Name
    PublisherSpringer

    Keywords

    • SCS-Cybersecurity
    • EWI-23168
    • POLIPO
    • IR-85242
    • Security
    • METIS-296355
    • Framework

    Cite this