Towards a Secure and Reliable IT-Ecosystem in Seaports

11/26/2021
by   Tobias Brandt, et al.
0

Digitalization in seaports dovetails the IT infrastructure of various actors (e.g., shipping companies, terminals, customs, port authorities) to process complex workflows for shipping containers. The security of these workflows relies not only on the security of each individual actor but actors must also provide additional guarantees to other actors like, for instance, respecting obligations related to received data or checking the integrity of workflows observed so far. This paper analyses global security requirements (e.g., accountability, confidentiality) of the workflows and decomposes them - according to the way workflow data is stored and distributed - into requirements and obligations for the individual actors. Security mechanisms are presented to satisfy the resulting requirements, which together with the guarantees of all individual actors will guarantee the security of the overall workflow.

READ FULL TEXT
POST COMMENT

Comments

There are no comments yet.

Authors

page 6

06/17/2021

Hardware-Enforced Integrity and Provenance for Distributed Code Deployments

Deployed microservices must adhere to a multitude of application-level s...
07/05/2021

An Empirical Analysis of Practitioners' Perspectives on Security Tool Integration into DevOps

Background: Security tools play a vital role in enabling developers to b...
04/16/2021

SecDocker: Hardening the Continuous Integration Workflow

Current Continuous Integration processes face significant intrinsic cybe...
12/01/2019

Zero knowledge proofs for cloud storage integrity checking

With the wide application of cloud storage, cloud security has become a ...
04/15/2018

Applying Distributed Ledgers to Manage Workflow Provenance

Sharing provenance across workflow management systems automatically is n...
04/15/2020

Hardening X.509 Certificate Issuance using Distributed Ledger Technology

The security of cryptographic communication protocols that use X.509 cer...
08/29/2017

Nonmalleable Information Flow: Technical Report

Noninterference is a popular semantic security condition because it offe...
This week in AI

Get the week's most popular data science and artificial intelligence research sent straight to your inbox every Saturday.