论文信息 - ROLE-BASED AUTHORIZATION IN EQUIPMENT ACCESS AT CERN

ROLE-BASED AUTHORIZATION IN EQUIPMENT ACCESS AT CERN

Given the significant dangers of LHC operations, Role-Based Access Control (RBAC) is designed to protect from accidental and unauthorized access to the LHC and injector equipment. Role-Based Authorization is part of this approach. It has been implemented in the Controls Middleware (CMW) infrastructure so that access to equipment can be restricted according to Access Rules defined jointly by the equipment and operation groups. This paper describes the authorization mechanism, the definition and management of Access Rules and the implementation of this mechanism within the CMW.

P.Gajewski | K.Kostro

[1] K. Kostro,et al. REMOTE DEVICE ACCESS IN THE NEW CERN ACCELERATOR , 2001, physics/0111166.

[2] A.D.Petrov,et al. USER AUTHENTICATION FOR ROLE-BASED ACCESS CONTROL , 2007 .

[3] V. Kain,et al. ROLE-BASED ACCESS CONTROL FOR THE ACCELERATOR CONTROL SYSTEM AT CERN , 2007 .

[4] K. Kostro,et al. CONTROLS MIDDLEWARE - THE NEW GENERATION , 2002 .