Publication | Closed Access
ROLE-BASED ACCESS CONTROL FOR THE ACCELERATOR CONTROL SYSTEM AT CERN
16
Citations
0
References
2007
Year
Unknown Venue
Authentication AuthorizationEngineeringInformation SecurityComputer ArchitectureHigh-energy AcceleratorsHardware SystemsAuthentication Access ControlControl SystemsHardware SecurityLogical Access ControlAccess ControlSystems EngineeringLhc OperationsSecurity ControlAccess Control DataComputer EngineeringComputer ScienceData SecurityCryptographyDomain-specific AcceleratorParticle Accelerator
Given the significant dangers of LHC operations, access control to the accelerator controls system is required. This paper describes the requirements, design, and implementation of Role-Based Access Control (RBAC) for the LHC & injectors controls systems. It is an overview of the two main components of RBAC: authentication (also called A1) and authorization (A2), and the tools needed to manage access control data. We begin by stating the main requirements of RBAC and then describe the architecture and its implementation. RBAC is developed by LAFS, a collaboration between CERN and Fermilab. The technology used for authentication and authorization are discussed in separate papers also in these proceedings [1][2].