Role-Based Access Control for Cyber-Physical Systems Using Shibboleth

Date Added: Jul 2009
Format: PDF

In this paper, the authors propose a Role-Based Access Control (RBAC) system for the distributed resources in a cyber-physical system. Current identity-based access control systems cause substantial administration overhead for the resource managers in the cyberphysical system because of the direct mapping between individual users and the access privileges on the resources. The RBAC system uses Shibboleth, which is an attribute authorization service currently being used in Grids. The administration overhead is reduced in the system because the role privileges of individual users are managed by Shibboleth, not by the resource managers.