Presentation is loading. Please wait.

Presentation is loading. Please wait.

Draft principles and framework for CAP identifiers Tony Rutkowski Cybersecurity Rapporteur (ITU-T Q.4/17) V1.0, 21 Jun 2009 WORLD METEOROLOGICAL ORGANIZATION.

Published byMarjory Armstrong Modified over 8 years ago

Similar presentations

Presentation on theme: "Draft principles and framework for CAP identifiers Tony Rutkowski Cybersecurity Rapporteur (ITU-T Q.4/17) V1.0, 21 Jun 2009 WORLD METEOROLOGICAL ORGANIZATION."— Presentation transcript:

1 Draft principles and framework for CAP identifiers Tony Rutkowski Cybersecurity Rapporteur (ITU-T Q.4/17) V1.0, 21 Jun 2009 WORLD METEOROLOGICAL ORGANIZATION WMO INFORMATION SYSTEM (WIS) WIS Common Alerting Protocol (CAP, X.1303) Implementation Workshop Geneva, Switzerland, 22-23 June 2009

2 2 Why cooperate globally  CAP can be used by anyone for anything, anywhere, at any time –No way to control CAP use However…  Common interests may exist among user communities regarding “CAP identifiers” concerning –Creation –Administration –Discovery –Verification –Use

3 3 CAP Identifier Value Propositions  Enhance the value of the CAP messages –Enable widespread sharing of the related event information –Enable analysis of events over long periods of time  Enhance the security of CAP messages –Enable information associated with the message to be obtained for verification  Enhance the flexibility of CAP messages –Enable new or additional information associated with the message to be obtained, e.g., message status

4 4 What are CAP identifiers  message schema or module identifier  individual message identifier  associated event identifier  identifiers for the entities (persons, organizations, or objects, physical or virtual) associated with the handling chain of the message –Creator (source) –Sender –Conveyor –Recipient  identifiers for policies associated with the message  message language identifier

5 5 Identifier Principles - Mandatory  CAP identifiers MUST be globally unique in a common namespace  The CAP identifier common namespace MUST accommodate distributed, autonomous, dynamic, extensible CAP uses and communities.  CAP identifiers MUST be structured to enable autonomous, distributed global discovery through hierarchical recursive queries in the hierarchy.  CAP identifiers MUST not exceed a length of [TBD] or a hierarchical depth exceeding [TBD] levels

6 6 Identifier Principles - Optional  CAP identifiers SHOULD have minimal internationaliz- ation impediments, e.g., consist of numbers  CAP identifiers SHOULD be structured so that usage, geographical, jurisdictional, and global hierarchical assignments can exist concurrently in the overall namespace (see next slide)  Registrars that assign CAP identifiers SHOULD obtain, with levels of assurance sufficient for the application, information concerning the registrants or objects to which the identifiers are assigned  Registrars that assign CAP identifiers SHOULD, as appropriate for the application or usage, support common structured query-response availability of the registrant or object information or a pointer to the information location for other users within the same community

7 7 Namespace Hierarchy Alternatives Countries 0 0 0 0 1 1 2 2 Applications 3 3 Geography-Jurisdiction CentricUse Centric CAP ExclusiveHybrid 0 0 1 1 Users 1 1 0 0 1 1 2 2 3 3 0 0 1 1 Countries 0 0 0 0 1 1 2 2 Applications 3 3 0 0 1 1 Users 1 1 0 0 1 1 2 2 3 3 0 0 1 1 An exclusive CAP Arc (Domain) for all CAP implementations Some combination

Download ppt "Draft principles and framework for CAP identifiers Tony Rutkowski Cybersecurity Rapporteur (ITU-T Q.4/17) V1.0, 21 Jun 2009 WORLD METEOROLOGICAL ORGANIZATION."

Similar presentations

CSO/NGO Consultations Report to IATI Signatories, Partner Countries and Steering Committee Paris, 4 July 2011.

CSO/NGO Consultations Report to IATI Signatories, Partner Countries and Steering Committee Paris, 4 July 2011.
Network Virtualization and Service Awareness Properties of FNs

Network Virtualization and Service Awareness Properties of FNs
Dynamic Sessions OASIS Security Services Face to Face #3 June 25, 2001.

Dynamic Sessions OASIS Security Services Face to Face #3 June 25, 2001.
A Unified Approach to Combat Counterfeiting: Use of the Digital Object Architecture and ITU-T Recommendation X.1255 Robert E. Kahn President & CEO CNRI,

A Unified Approach to Combat Counterfeiting: Use of the Digital Object Architecture and ITU-T Recommendation X.1255 Robert E. Kahn President & CEO CNRI,
Web Service Ahmed Gamal Ahmed Nile University Bioinformatics Group

Web Service Ahmed Gamal Ahmed Nile University Bioinformatics Group
Security that is... Ergonomic, Economical and Efficient! In every way! Stonesoft SSL VPN SSL VPN.

Security that is... Ergonomic, Economical and Efficient! In every way! Stonesoft SSL VPN SSL VPN.
Connect. Communicate. Collaborate Click to edit Master title style MODULE 1: perfSONAR TECHNICAL OVERVIEW.

Connect. Communicate. Collaborate Click to edit Master title style MODULE 1: perfSONAR TECHNICAL OVERVIEW.
1 NODC, Russia GISC & DCPC developers meeting Langen, 29 – 31 March E2EDM technology implementation for WIS GISC development S. Sukhonosov, S. Belov.

1 NODC, Russia GISC & DCPC developers meeting Langen, 29 – 31 March E2EDM technology implementation for WIS GISC development S. Sukhonosov, S. Belov.
Geneva, Switzerland, 4 December 2014 ITU-T Study Group 17 activities in the context of digital financial services and inclusion: Security and Identity.

Geneva, Switzerland, 4 December 2014 ITU-T Study Group 17 activities in the context of digital financial services and inclusion: Security and Identity.
3.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.

3.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.
Geneva, Switzerland, 15-16 September 2014 Introduction of ISO/IEC 29003 Identity Proofing Patrick Curry Director, British Business Federation Authority.

Geneva, Switzerland, September 2014 Introduction of ISO/IEC Identity Proofing Patrick Curry Director, British Business Federation Authority.
Lecture 7 Access Control

Lecture 7 Access Control
Lecture slides prepared for “Computer Security: Principles and Practice”, 2/e, by William Stallings and Lawrie Brown, Chapter 4 “Overview”.

Lecture slides prepared for “Computer Security: Principles and Practice”, 2/e, by William Stallings and Lawrie Brown, Chapter 4 “Overview”.
CORDRA Philip V.W. Dodds March 2004. The “Problem Space” The SCORM framework specifies how to develop and deploy content objects that can be shared and.

CORDRA Philip V.W. Dodds March The “Problem Space” The SCORM framework specifies how to develop and deploy content objects that can be shared and.
A centralized system.  Active Directory is Microsoft's trademarked directory service, an integral part of the Windows architecture. Like other directory.

A centralized system.  Active Directory is Microsoft's trademarked directory service, an integral part of the Windows architecture. Like other directory.
DataCite: Making Data Citable Jan Brase (DataCite/TIB Hannover) Brigitte Hausstein (GESIS) Wolfgang Zenk-Möltgen (GESIS)

DataCite: Making Data Citable Jan Brase (DataCite/TIB Hannover) Brigitte Hausstein (GESIS) Wolfgang Zenk-Möltgen (GESIS)
1 9 th CJK NID WG, Beijing, China Status report on USN related activities in ITU-T Q.25/16 Document number Beijing, China 22-24 July 2009 Hyoung Jun KIM,

1 9 th CJK NID WG, Beijing, China Status report on USN related activities in ITU-T Q.25/16 Document number Beijing, China July 2009 Hyoung Jun KIM,
Session 6 Windows Platform Dina Alkhoudari. Learning Objectives What is Active Directory Logical components of active directory Physical components of.

Session 6 Windows Platform Dina Alkhoudari. Learning Objectives What is Active Directory Logical components of active directory Physical components of.
Cardea Requirements, Authorization Model, Standards and Approach Globus World Security Workshop January 23, 2004 Rebekah Lepro Metz

Cardea Requirements, Authorization Model, Standards and Approach Globus World Security Workshop January 23, 2004 Rebekah Lepro Metz
 Cloud computing  Workflow  Workflow lifecycle  Workflow design  Workflow tools : xcp, eucalyptus, open nebula.

 Cloud computing  Workflow  Workflow lifecycle  Workflow design  Workflow tools : xcp, eucalyptus, open nebula.

Similar presentations

Ads by Google