Presentation is loading. Please wait.

Presentation is loading. Please wait.

IST 2006 – 22/11/2006 Aljosa Pasic Atos Origin Security, Dependability and Trust in Service Infrastructures.

Published byKathleen Gordon Modified over 8 years ago

Similar presentations

Presentation on theme: "IST 2006 – 22/11/2006 Aljosa Pasic Atos Origin Security, Dependability and Trust in Service Infrastructures."— Presentation transcript:

1 IST 2006 – 22/11/2006 Aljosa Pasic Atos Origin Security, Dependability and Trust in Service Infrastructures

2 IST 2006, 22/11/2006 - 1 Index  Service Oriented World  Where is the problem?  Examples  Security dimensions in Service Oriented World  ESFORS and NESSI  Research topics  Conclusion

3 IST 2006, 22/11/2006 - 2 Service Oriented World Applications will need to utilise shared and co-owned services out of different domains of control that require to obey separate security policies and ask for diverse security and dependability qualities

4 IST 2006, 22/11/2006 - 3 Coming problems  For industry: Demand for Secure software is much higher than available security expertise  For research/technology: New complex scenarios (e.g. ambient intelligence) introduce security issues not addressed by conventional engineering processes  For market consultants: Security properties difficult to measure and it is also difficult to evaluate their “compositional effects”  For users: Security segmentation and market definitions are blurring: “service infrastructure” covers network infrastructure, perimeter, desktop, server and application security  For auditors and lawyers: Who is accountable and liable for what?  For society: Trust becomes a “key enabler” for service provision and use  For everyone: How much should we spend on security?

5 IST 2006, 22/11/2006 - 4 Example: Secure “Crossroads” Hi, I am a software service Hi, I am a really naughty crossroad Cross - Platform, Cross - device, Cross - domain, Cross - Protocol …

6 IST 2006, 22/11/2006 - 5 Example: Secure “Crossroads” Platform A, Credentials B … Device A, Protocol B …, Device A, Protocol B …, Platform B, Credentials A … Domain C, policy C S2M security Dynamic Adaptation “Factor 5“ Access and identity Shared understanding

7 IST 2006, 22/11/2006 - 6 Security Dimensions in Service Infrastructures Secure Services Securing Services Security as a service

8 IST 2006, 22/11/2006 - 7 ESFORS and NESSI WG TSD NESSI SC SB NWG TSD ESFORS European Security Forum for Web Services, ESFORS European Technology Platform: Networked European Software & service Initiative, NESSI

9 IST 2006, 22/11/2006 - 8 Objectives  Address the security and dependability requirements, challenges and priorities of emerging service oriented software applications  Bridge two communities: the software engineering (services, GRID) community and the security community  Support the NESSI vision and respond to security challenges  Address long-term research on trust, security and dependability in software and services

10 IST 2006, 22/11/2006 - 9 NESSI TSD in SRA Vol3. 1.Widespread and large-scale deployment of Privacy Enhancing Technologies (PETs) 2.Strong identity management 3.Security mechanisms for service 4.Trust & dependability management and assurance 5.Trusted certification tools for services 6.Openness as a foundation for systems security 7.Holistic Management of Trust 8.Engineering security throughout the whole lifecycle of Service oriented systems 9.Security of the human-computer interface ______________________________________ 10. Inherently Stable and Safe Architectures (together with SOI NWG)

11 IST 2006, 22/11/2006 - 10 Current activity within research topic groups 1.Security mechanisms for services 2.Trust and dependability 1. Trust analysis, management and monitoring 2. Dependability assessment and monitoring 3.Security and Dependability engineering 4.Dependable architectures 5.Identity considerations 6.Multidisciplinary and integrated approach to TSD 7.Security of the human-computer interface 8.Privacy considerations 9.Certification, auditing and assurance 10.Openness as a foundation for systems security

12 IST 2006, 22/11/2006 - 11 Mapping challenges, scenarios and research topics Scenario A Scenario B Scenario C Decrease Gap … More sec. knowledge More Trusted components More trusted relations Handle complexity Dynamic & ad-hoc Cross-x Context dependent Decision Making User involvement Perception and psychology Economics of security Social mechanisms

13 IST 2006, 22/11/2006 - 12 Conclusions  It is not “business as usual”: we need many stakeholders in order to deal with trust, security and dependability in service oriented software applications  We have the responsibility to build secure software & services that MATCH people´s expectations and notions of trust (and also “trust just a little bit”).  Long-term research on trust, security and dependability in software and services should address components, mechanisms and processes, not all of them have technical nature  A large group of interested parties already started with the discussions within NESSI WG  Join us for the networking session 23/11, room 207 at 11:00

14 IST 2006, 22/11/2006 - 13 Contact for more information Aljosa Pasic aljosa.pasic@atosorigin.com Trust, Dependability and Security cannot be “ bolted on ”, it should be “ woven in ”.

Download ppt "IST 2006 – 22/11/2006 Aljosa Pasic Atos Origin Security, Dependability and Trust in Service Infrastructures."

Similar presentations

Overview of NESSI Projects Portfolio Stefano De Panfilis Engineering Ingegneria Informatica S.p.A.

Overview of NESSI Projects Portfolio Stefano De Panfilis Engineering Ingegneria Informatica S.p.A.
© 2007 Open Grid Forum Grids in the IT Data Center OGF 21 - Seattle Nick Werstiuk October 16, 2007.

© 2007 Open Grid Forum Grids in the IT Data Center OGF 21 - Seattle Nick Werstiuk October 16, 2007.
ETSI Workshop – 24-Oct-06 NESSI From R&D to Competitiveness in Services Frederic Gittler HP Labs Vice-Chairman NESSI Steering Committee.

ETSI Workshop – 24-Oct-06 NESSI From R&D to Competitiveness in Services Frederic Gittler HP Labs Vice-Chairman NESSI Steering Committee.
19/02/2006 The NESSI European Technology Platform 2nd Workshop – Shanghai - 20-22 Feb 2006 Stefano De Panfilis R&D Laboratories Engineering Ingegneria.

19/02/2006 The NESSI European Technology Platform 2nd Workshop – Shanghai Feb 2006 Stefano De Panfilis R&D Laboratories Engineering Ingegneria.
1 From Grids to Service-Oriented Knowledge Utilities research challenges Thierry Priol.

1 From Grids to Service-Oriented Knowledge Utilities research challenges Thierry Priol.
DG INFSO- Grid Research & Infrastructures: W. Boch, M. Campolargo 1 Delivery of Industrial-strength Grid Middleware: establishing an effective European.

DG INFSO- Grid Research & Infrastructures: W. Boch, M. Campolargo 1 Delivery of Industrial-strength Grid Middleware: establishing an effective European.
The Implications of Convergence on Spectrum Management Mike Goddard Director, Spectrum and International Policy Radiocommunications Agency, UK.

The Implications of Convergence on Spectrum Management Mike Goddard Director, Spectrum and International Policy Radiocommunications Agency, UK.
The role of NESSI in the Future Internet Frédéric Gittler, HP Labs NESSI SC Chairman NEXOF-RA Chief Architect.

The role of NESSI in the Future Internet Frédéric Gittler, HP Labs NESSI SC Chairman NEXOF-RA Chief Architect.
Multi-level SLA Management for Service-Oriented Infrastructures Wolfgang Theilmann, Ramin Yahyapour, Joe Butler, Patrik Spiess consortium / SAP.

Multi-level SLA Management for Service-Oriented Infrastructures Wolfgang Theilmann, Ramin Yahyapour, Joe Butler, Patrik Spiess consortium / SAP.
Intelligence Step 5 - Capacity Analysis Capacity Analysis Without capacity, the most innovative and brilliant interventions will not be implemented, wont.

Intelligence Step 5 - Capacity Analysis Capacity Analysis Without capacity, the most innovative and brilliant interventions will not be implemented, wont.
Course: e-Governance Project Lifecycle Day 1

Course: e-Governance Project Lifecycle Day 1
Safe and Secure Solutions for Smarter Cities The value of standardization and certification in planning and managing Smart Cities 12/05/2014Euralarm.

"Safe and Secure Solutions for Smarter Cities" The value of standardization and certification in planning and managing Smart Cities 12/05/2014Euralarm.
Clouds C. Vuerli Contributed by Zsolt Nemeth. As it started.

Clouds C. Vuerli Contributed by Zsolt Nemeth. As it started.
Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch

Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch
The FI-WARE Project – Base Platform for Future Service Infrastructures NOVEMBER, 16th 2011Thierry Nagellen Workshop AAL Community.

The FI-WARE Project – Base Platform for Future Service Infrastructures NOVEMBER, 16th 2011Thierry Nagellen Workshop AAL Community.
Open Workshop on e-Infrastructures, Helsinki October 4 – 5, 2006 Roadmap Parallel Session on last chapter of e-IRG Roadmap: Crossing the Boundaries of.

Open Workshop on e-Infrastructures, Helsinki October 4 – 5, 2006 Roadmap Parallel Session on last chapter of e-IRG Roadmap: Crossing the Boundaries of.
Trust Establishment in Pervasive Grid Environments Syed Naqvi, Michel Riguidel TÉLÉCOM PARIS ÉNST É cole N ationale S upérieur des T élécommunications.

Trust Establishment in Pervasive Grid Environments Syed Naqvi, Michel Riguidel TÉLÉCOM PARIS ÉNST É cole N ationale S upérieur des T élécommunications.
- 1 Agenda Introduction Overview of NESSI NESSI’s roadmap for FP7 NESSI – a value proposition for vertical areas Debate and input from the audience Conclusion.

- 1 Agenda Introduction Overview of NESSI NESSI’s roadmap for FP7 NESSI – a value proposition for vertical areas Debate and input from the audience Conclusion.
Atos, Atos and fish symbol, Atos Origin and fish symbol, Atos Consulting, and the fish symbol itself are registered trademarks of Atos Origin SA. date.

Atos, Atos and fish symbol, Atos Origin and fish symbol, Atos Consulting, and the fish symbol itself are registered trademarks of Atos Origin SA. date.
1 IS112 – Chapter 1 Notes Computer Organization and Programming Professor Catherine Dwyer Fall 2005.

1 IS112 – Chapter 1 Notes Computer Organization and Programming Professor Catherine Dwyer Fall 2005.

Similar presentations

Ads by Google