Quarterly journal published in SPbPU
and edited by prof. Dmitry Zegzhda
Peter the Great St. Petersburg Polytechnic University
Institute of computer sciences and technologies
information security of computer systems
Information Security Problems. Computer Systems
Published since 1999.
ISSN 2071-8217
APPLYING OF IDENTIFICATION AND ACCESS CONTROL MANAGEMENT SYSTEM IN INDUSTRIAL CONTROL SYSTEM

I. I. Zabirov, I. V. Mashkina
Ufa State Aviation Technical University (USATU)

Annotation: The possibility of using of Identity and access Management system (IdM/IAM) is considered in the paper to automate users account and access rights management in Industrial Control System (ICS). The main feature of IdM/IAM system is that they require an individual approach and ongoing support when implemented in ICS. The results of the role-based access model development are presented for its implementation in IdM/IAM. An analysis of ICS safety has been carried out and the article provides a list of the information assets and information subjects representing the function, or roles, of industrial network users. A hierarchy of users roles and an access matrix (with possible rights) have been developed.
Keywords: Industrial control system, information assets, information subjects, access control, user account and rights management, hierarchy of users roles
Pages 98-105