2024 : 11 : 21
Payam Mahmoudi-nasr

Payam Mahmoudi-nasr

Academic rank: Associate Professor
ORCID: 0000-0003-1421-3712
Education: PhD.
ScopusId: 56483175500
HIndex: 0/00
Faculty: Faculty of Technology and Engineering
Address: Associate Professor of Computer Engineering at University of Mazandaran
Phone: 011-35305109

Research

Title
An Alarm Based Access Control Model for SCADA System
Type
Presentation
Keywords
Access control, trust, insider attack, RBAC, SCADA
Year
2015
Researchers Payam Mahmoudi-nasr ، ali yazdian varjani

Abstract

Insider attacks are one of the most dangerous threats on security of critical infrastructures. An insider attack occurs when an authorized operator misuses the permissions, and brings catastrophic damages by sending legitimate control commands. Providing too many permissions may backfire, when operators wrongly or deliberately abuse their privileges. Therefore, an access control model is required to provide necessary permissions and prevent malicious usage. This paper proposes a new access control model in Supervisory Control and Data Acquisition (SCADA) system. Proposed model extends the Role Based Access Control (RBAC) model by incorporating an operator trust assessment process. The operator trust is calculated periodically or when an insider attack is detected. The simulation results illustrate that the proposed model is effective, and the access of attacker or unskilled operator will be limited as the access of skilled operator will be increased.