IST 2006 – 22/11/2006 Aljosa Pasic Atos Origin Security, Dependability and Trust in Service Infrastructures.

Slides:

Advertisements

Similar presentations

Overview of NESSI Projects Portfolio Stefano De Panfilis Engineering Ingegneria Informatica S.p.A.

Advertisements

© 2007 Open Grid Forum Grids in the IT Data Center OGF 21 - Seattle Nick Werstiuk October 16, 2007.

ETSI Workshop – 24-Oct-06 NESSI From R&D to Competitiveness in Services Frederic Gittler HP Labs Vice-Chairman NESSI Steering Committee.

19/02/2006 The NESSI European Technology Platform 2nd Workshop – Shanghai Feb 2006 Stefano De Panfilis R&D Laboratories Engineering Ingegneria.

1 From Grids to Service-Oriented Knowledge Utilities research challenges Thierry Priol.

DG INFSO- Grid Research & Infrastructures: W. Boch, M. Campolargo 1 Delivery of Industrial-strength Grid Middleware: establishing an effective European.

The Implications of Convergence on Spectrum Management Mike Goddard Director, Spectrum and International Policy Radiocommunications Agency, UK.

The role of NESSI in the Future Internet Frédéric Gittler, HP Labs NESSI SC Chairman NEXOF-RA Chief Architect.

Multi-level SLA Management for Service-Oriented Infrastructures Wolfgang Theilmann, Ramin Yahyapour, Joe Butler, Patrik Spiess consortium / SAP.

Intelligence Step 5 - Capacity Analysis Capacity Analysis Without capacity, the most innovative and brilliant interventions will not be implemented, wont.

Course: e-Governance Project Lifecycle Day 1

"Safe and Secure Solutions for Smarter Cities" The value of standardization and certification in planning and managing Smart Cities 12/05/2014Euralarm.

Clouds C. Vuerli Contributed by Zsolt Nemeth. As it started.

Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch

The FI-WARE Project – Base Platform for Future Service Infrastructures NOVEMBER, 16th 2011Thierry Nagellen Workshop AAL Community.

Open Workshop on e-Infrastructures, Helsinki October 4 – 5, 2006 Roadmap Parallel Session on last chapter of e-IRG Roadmap: Crossing the Boundaries of.

Trust Establishment in Pervasive Grid Environments Syed Naqvi, Michel Riguidel TÉLÉCOM PARIS ÉNST É cole N ationale S upérieur des T élécommunications.

- 1 Agenda Introduction Overview of NESSI NESSI’s roadmap for FP7 NESSI – a value proposition for vertical areas Debate and input from the audience Conclusion.

Atos, Atos and fish symbol, Atos Origin and fish symbol, Atos Consulting, and the fish symbol itself are registered trademarks of Atos Origin SA. date.

1 IS112 – Chapter 1 Notes Computer Organization and Programming Professor Catherine Dwyer Fall 2005.

Emerging Research Dimensions in IT Security Dr. Salar H. Naqvi Senior Member IEEE Research Fellow, CoreGRID Network of Excellence European.

Jj/mm/yyyy An introduction to NESSI Frédéric Gittler HP Labs NESSI Steering Committee Vice-Chairman.

Building a Strong Foundation for a Future Internet Jennifer Rexford ’91 Computer Science Department (and Electrical Engineering and the Center for IT Policy)

1. Context: Ambient Intelligence Ambient Intelligence (AmI) represents a vision of ubiquitous computing, sensing and actuating to unobtrusively enhance.

M.A.Doman Model for enabling the delivery of computing as a SERVICE.

Open Cloud Sunil Kumar Balaganchi Thammaiah Internet and Web Systems 2, Spring 2012 Department of Computer Science University of Massachusetts Lowell.

Chapter © 2012 Pearson Education, Inc. Publishing as Prentice Hall.

Adaptive Services Grid FP6 – IST Develop a prototype of an open development platform for adaptive services registration,

Copyright © 2006 CyberRAVE LLC. All rights reserved. 1 Virtual Private Network Service Grid A Fixed-to-Mobile Secure Communications Framework Managed Security.

HORIZON 2020 The EU Framework Programme for Research and Innovation Societal Challenge 6 Topics under DG CONNECT H3 responsibility European Commission,

Climate Sciences: Use Case and Vision Summary Philip Kershaw CEDA, RAL Space, STFC.

2 Systems Architecture, Fifth Edition Chapter Goals Describe the activities of information systems professionals Describe the technical knowledge of computer.

M.A.Doman Short video intro Model for enabling the delivery of computing as a SERVICE.

WISTP workshop Aljosa Pasic Atos Origin Trust, Security and Dependability in ICT – FP7.

Mario Hoffmann (Chair) Fraunhofer Institute SIT, Germany Wang, Hu (Vice Chair) Huawei Technologies, China.

“The NESSI Strategy: The Way Ahead” BCI´07 Jose M. Cavanillas Vice-chairman NESSI Steering Committee Director Atos Origin – Research & Innovation.

“4WARD – Architecture and Design for the Future Internet” D2.1 Technical Requirement Hoon-gyu Choi

SAM for Virtualizatio n Presenter Name. Virtualization: a key priority for business decision makers Technavio forecasts that the global virtualization.

1 The Benefits of an SOA in the Contact Center Brian Garr Program Director, IBM Speech Solutions.

Business Process Change and Discrete-Event Simulation: Bridging the Gap Vlatka Hlupic Brunel University Centre for Re-engineering Business Processes (REBUS)

International Consulting Data Sheet. 1 Program Management for International Headquarters (IHQ) Why does a company go International ? Increase of business.

Geneva, Switzerland, 17 October 2011 Summary of Session 4: SDP standardization status and requirements Huilan Lu, Ph.D. SG 13 Vice Chairman ITU Workshop.

NETWORKED EUROPEAN SOFTWARE & SERVICES INITIATIVE Future research challenges in dependability - an industrial perspective from NESSI Aljosa Pasic Atos.

Engineering Essential Characteristics Security Engineering Process Overview.

SOA-39: Securing Your SOA Francois Martel Principal Solution Engineer Mitigating Security Risks of a De-coupled Infrastructure.

Next Generation Grid(s) - European Grid Research R. Tirler – IST DG Dutch Grid Day Amsterdam - 3 rd July Next Generation Grid(s) European.

"The views expressed in this presentation are those of the author and do not necessarily reflect the views of the European Commission“ Future Internet.

© 2005 IBM Corporation IBM Business-Centric SOA Event SOA on your terms and our expertise Operational Efficiency Achieved through People and SOA Martin.

NESSI at a glance Josep Martrat ATOS ORIGIN EGEE 1st Industry Day. Paris, 27 th April 2006.

NGCWE Expert Group EU-ESA Experts Group's vision Prof. Juan Quemada NGCWE Expert Group IST Call 5 Preparatory Workshop on CWEs 13th.

Critical Decisions, Myths & Lessons Learned in Networking What is important at the time may be only apparent with hindsight What seems important at the.

16/11/ Semantic Web Services Language Requirements Presenter: Emilia Cimpian

IC&IC eLearning solutions Bucarest, 2 September 2010.

Jacques Bus Head of Unit, DG INFSO-F5 “Security” European Commission FP7 launch in the New Member States Regional on-line conference 22 January 2007 Objective.

E-Science Security Roadmap Grid Security Task Force From original presentation by Howard Chivers, University of York Brief content:  Seek feedback on.

Chapter © 2012 Pearson Education, Inc. Publishing as Prentice Hall.

NeOn Components for Ontology Sharing and Reuse Mathieu d’Aquin (and the NeOn Consortium) KMi, the Open Univeristy, UK

Technology-enhanced Learning: EU research and its role in current and future ICT based learning environments Pat Manson Head of Unit Technology Enhanced.

SRA Key Topics Reference Architectures for Cyber-Physical Systems Dr. Christian El Salloum AVL List GmbH.

DM Collaboration – OMA & BBF: Deployment Scenarios Group Name: WG5 - MAS Source: Tim Carey, ALU, Meeting Date:

IoT R&I on IoT integration and platforms INTERNET OF THINGS

1© Copyright 2012 EMC Corporation. All rights reserved. Next Generation Authentication Bring Your Own security impact Tim Dumas – Technology Consultant.

Chapter 1 Computer Technology: Your Need to Know

Bob Jones EGEE Technical Director

BIL 424 NETWORK ARCHITECTURE AND SERVICE PROVIDING.

ISO Smart and Sustainable Cities developments

ASSET - Automotive Software cyber SEcuriTy

Trust Security Privacy Dependability (TSPD)

Ambient Intelligence -by Internal Guide: M.Preethi(10C91A0563)

ISO Smart and Sustainable Cities developments

Presentation transcript:

IST 2006 – 22/11/2006 Aljosa Pasic Atos Origin Security, Dependability and Trust in Service Infrastructures

IST 2006, 22/11/ Index  Service Oriented World  Where is the problem?  Examples  Security dimensions in Service Oriented World  ESFORS and NESSI  Research topics  Conclusion

IST 2006, 22/11/ Service Oriented World Applications will need to utilise shared and co-owned services out of different domains of control that require to obey separate security policies and ask for diverse security and dependability qualities

IST 2006, 22/11/ Coming problems  For industry: Demand for Secure software is much higher than available security expertise  For research/technology: New complex scenarios (e.g. ambient intelligence) introduce security issues not addressed by conventional engineering processes  For market consultants: Security properties difficult to measure and it is also difficult to evaluate their “compositional effects”  For users: Security segmentation and market definitions are blurring: “service infrastructure” covers network infrastructure, perimeter, desktop, server and application security  For auditors and lawyers: Who is accountable and liable for what?  For society: Trust becomes a “key enabler” for service provision and use  For everyone: How much should we spend on security?

IST 2006, 22/11/ Example: Secure “Crossroads” Hi, I am a software service Hi, I am a really naughty crossroad Cross - Platform, Cross - device, Cross - domain, Cross - Protocol …

IST 2006, 22/11/ Example: Secure “Crossroads” Platform A, Credentials B … Device A, Protocol B …, Device A, Protocol B …, Platform B, Credentials A … Domain C, policy C S2M security Dynamic Adaptation “Factor 5“ Access and identity Shared understanding

IST 2006, 22/11/ Security Dimensions in Service Infrastructures Secure Services Securing Services Security as a service

IST 2006, 22/11/ ESFORS and NESSI WG TSD NESSI SC SB NWG TSD ESFORS European Security Forum for Web Services, ESFORS European Technology Platform: Networked European Software & service Initiative, NESSI

IST 2006, 22/11/ Objectives  Address the security and dependability requirements, challenges and priorities of emerging service oriented software applications  Bridge two communities: the software engineering (services, GRID) community and the security community  Support the NESSI vision and respond to security challenges  Address long-term research on trust, security and dependability in software and services

IST 2006, 22/11/ NESSI TSD in SRA Vol3. 1.Widespread and large-scale deployment of Privacy Enhancing Technologies (PETs) 2.Strong identity management 3.Security mechanisms for service 4.Trust & dependability management and assurance 5.Trusted certification tools for services 6.Openness as a foundation for systems security 7.Holistic Management of Trust 8.Engineering security throughout the whole lifecycle of Service oriented systems 9.Security of the human-computer interface ______________________________________ 10. Inherently Stable and Safe Architectures (together with SOI NWG)

IST 2006, 22/11/ Current activity within research topic groups 1.Security mechanisms for services 2.Trust and dependability 1. Trust analysis, management and monitoring 2. Dependability assessment and monitoring 3.Security and Dependability engineering 4.Dependable architectures 5.Identity considerations 6.Multidisciplinary and integrated approach to TSD 7.Security of the human-computer interface 8.Privacy considerations 9.Certification, auditing and assurance 10.Openness as a foundation for systems security

IST 2006, 22/11/ Mapping challenges, scenarios and research topics Scenario A Scenario B Scenario C Decrease Gap … More sec. knowledge More Trusted components More trusted relations Handle complexity Dynamic & ad-hoc Cross-x Context dependent Decision Making User involvement Perception and psychology Economics of security Social mechanisms

IST 2006, 22/11/ Conclusions  It is not “business as usual”: we need many stakeholders in order to deal with trust, security and dependability in service oriented software applications  We have the responsibility to build secure software & services that MATCH people´s expectations and notions of trust (and also “trust just a little bit”).  Long-term research on trust, security and dependability in software and services should address components, mechanisms and processes, not all of them have technical nature  A large group of interested parties already started with the discussions within NESSI WG  Join us for the networking session 23/11, room 207 at 11:00

IST 2006, 22/11/ Contact for more information Aljosa Pasic Trust, Dependability and Security cannot be “ bolted on ”, it should be “ woven in ”.