AUTHENTICATION/AUTHORIZATION FRAMEWORK FOR A PROCESS CONTROL OR AUTOMATION SYSTEM

AUTHENTICATION/AUTHORIZATION FRAMEWORK FOR A PROCESS CONTROL OR AUTOMATION SYSTEM

An architecture supporting a process control or automation system may include an authentication service which determines whether an entity (e.g., a human, automated, virtual, or physical entity) is the party that/who the entity claims to be, and an authorization service which determines whether a re...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Nixon, Mark J, Dakoju, Sireesha, Ubach, Antonio, Doraiswamy, Narayanan, Villarrubia, Matthew, Joshi, Krishna, Hernandez, Sean
Format: Patent
Sprache:eng
Schlagworte:
CONTROL OR REGULATING SYSTEMS IN GENERAL
CONTROLLING
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
FUNCTIONAL ELEMENTS OF SUCH SYSTEMS
MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS ORELEMENTS
PHYSICS
REGULATING
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:An architecture supporting a process control or automation system may include an authentication service which determines whether an entity (e.g., a human, automated, virtual, or physical entity) is the party that/who the entity claims to be, and an authorization service which determines whether a request of the entity to access a resource is allowed or denied. The authentication service provides unique identities of entities and respective security credentials, which may include tokens utilized during authorization. The authorization service authorizes an entity to access a requested resource based on role-based permissions of a role to which the entity is assigned and resource access permissions protecting the requested resource. The role-based permissions and/or the resource access permissions may be respectively scoped to limit or restrict actions, activities, operations, and/or resource access based on specified criteria. Each entity may be authenticated, and each request of an authenticated entity may be respectively authorized.