Factory Automation Edge Computing Operating System Reference Implementation

Full project page
Factory Automation Edge Computing Operating System Reference Implementation

AAA - Access, Authorisation and Authentication

General description

Authorisation is the process of allowing an entity (humans, systems or devices) to access information systems or facilities where information and processing capabilities are being stored. More practical in an industrial setting for Digital Manufacturing Platforms, an authorized person can get access to an operational machine in order to update it, or investigate its contents. Unauthorized access could be someone who has been able to access the network from the outside, performing actions that have not been authorized and cannot be justified.

Authentication is a means to assess the authorization rules of an entity by means of a set of instruments. In the case of Digital Manufacturing Platforms it would be the instruments like user name and password, and in addition a second factor such as a physical token or a mobile phone that can authenticate the person accessing the platform. The physical token connects the person to something he has, the password to something he knows. 

A third A in the AAA-architecture is related to Access. Once authorized, and authenticated, access can be granted to the location, system, application, and / or information. Access control levels can thus be set up on different layers. These can be physical (access to the country, to the plant, to the building, the room and the environment where the system is located), and logical (using authentication technologies). In Digital Manufacturing Platforms this means the systems could be accessible only on premise, in the factory or for instance in the (private or public) cloud. As a result different access mechanisms needs to be considered, depending on the risk and intended security levels and controls. 

https://en.wikipedia.org/wiki/AAA_(computer_security) ; https://en.wikipedia.org/wiki/Authorization

 


Specifics for Project FAR-EDGE | Factory Automation Edge Computing Operating System Reference Implementation

Description FAR-EDGE will also establish a unique ecosystem for FI factory automation solutions, which will bring together the FoF and FI communities and will ensure sustainability of FAR-EDGE results.
Organisation University of applied sciences and arts of southern switzerland (SUPSI)
Comments TBD (OpenID Connect is the candidate technology for securing the Open API) New Generation Access Control (NGAC) framework for the specificication and enforcement of access polocies The Platform is a composition
 Participation and Contributions to Standards Bodies, Clusters and Associations - M35 release Result title Participation and Contributions to Standards Bodies, Clusters and Associations - M35 release
 Periodic Reporting for period 1 - FAR-EDGE (Factory Automation Edge Computing Operating System Reference Implementation) Result description O4: Implement and integrate multi-layer and compositional security-by-design techniques within the FAREDGE approach.
 FAR-EDGE Volvo Pilot: Mass-Customization Result comments Manufacturing Manufacture of motor vehicles, trailers and semi-trailers Trucks
 AAA - Access, Authorisation and Authentication Taxon title AAA - Access, Authorisation and Authentication Taxon description   A third A in the AAA-architecture is related to Access. Once authorized, and authenticated, access can be granted to the location, system, application, and / or information.