Cyber Security Test-bed TDL Download Corner. Achieving The Trust Paradigm Shift ATTPS. Arthur Leijtens, Daan Velthausz, Bicore, April, Brussel

Size: px

Start display at page:

Download "Cyber Security Test-bed TDL Download Corner. Achieving The Trust Paradigm Shift ATTPS. Arthur Leijtens, Daan Velthausz, Bicore, April, Brussel"

Sheena Elliott
8 years ago
Views:

1 Cyber Security Test-bed TDL Download Corner Arthur Leijtens, Daan Velthausz, Bicore, April, Brussel ATTPS Achieving The Trust Paradigm Shift

2 Generic Trust Architecture ATTPS project has developed a generic trust architecture consisting of a number of components and elements. Different implementations for these components have been developed by TDL members. To allow others to validate and reuse these components in real life settings, TDL is developing an experimentation Testbed infrastructure: download corner

3 Overall components of generic trust architecture CORE Components Access control Identity Management Trustworthy data processing Trustworthy Data Storage Privacy Security Monitoring implementing also risk management Optional/additional Components On-boarding Strong Authentication Consent Off-Boarding Trustworthy cloud / Trustworthy infrastructure Trustworthy Factory E-signing

4 ATTPS Test bed evolution The generic trust architecture => testbed platform where all components are installed and deployed, and for each components different implementations to choose.

5 Goal: TDL Download Corner Provide a service where organisations can offer, use and validate trustworthy elements. Organisations can play around with technology that is offered and can provide feedback to the element provider on topics like usability, trustworthiness, robustness, and privacy protection. Rapid piloting and validation of innovative technology and test-bed parts to support sprint cycles, experiments, user trials, pilots,

6 TDL Download Corner Element providers deploy trust elements to the download corner: a stand-alone service element, first level support, Service Level Agreement (SLA) and optional an online questionaries to be filled in by the users to gain user insights. Users of the download corner can test innovative trust elements and validate in an early stage new applications without too much administrative burden Subscribe to the SLA using e-signature mechanism Provide feedback on the experiments using the elements

7 Status: Download Corner The download corner contains a number of core trustworthy elements that are made available to the TDL members Descriptions: functionality, interfaces, usage policies & requirements, SLA, documentation, example configuration, available test data Several components have been integrated and used in short sprints cycles Near future to be offered to other interested organisations, EU related projects

8 Examples Components Download corner Trustworthy Infrastructure / Cloud Trustworthy OpenStack Trusted Infrastructure Cloud Trustworthy Factory: Thales implementation Trustworthy Data Processing: NEC implementation Trustworthy Data Storage: Gemalto implementation Access Control: Thales PDP implementation Authorization PDP Security Monitoring: Thales implementation Security Monitoring GE Onboarding: VERIZON Implementation E-signing: TrustSeed implementation

9 Experiments Test- bed: Architecture ApplicaAons Service element A Service Element B Service Element C Test bed Service Level Agreement Component E Test- bed components Component F Component G Component X Interface layer Test bed building blocks Management, monitoring and data collecaon Management elements 1, 2,.. TesAng elements 1,2, Monitoring/data collecaon elements 1,2,..

10 Experiments TDL pla(orm pilot ApplicaAons Claim based access Office 365 E- Signing Contracts E- autenacaaon TDL membership 30 contracts Test bed Service Level Agreement Testbed components MS You Prove E- ID Trust Seed Signature PlaSorm STORK II Interface layer Test bed building blocks Management, monitoring and data collecaon Account managment Test accounts Log files

11 Experiments Federated ID Flightmap sprint ApplicaAons Claim based access Office 365 Fligtmap Federated Flightmap logins Test bed Service Level Agreement Testbed components MS You Prove E- ID Cloud Interface layer Test bed building blocks Management, monitoring and data collecaon Flightmap management Login test accounts Log files

12 Experiments Cyber Security sprint ApplicaAons Security monitor Breach detecaon Risk assessment Compliance checking BYOD / SME assessment Test bed Service Level Agreement Testbed components Sensors / Vulnerability scanner Honey pots ISP backbone Security SOC Interface layer Test bed building blocks Management, monitoring and data collecaon Network management A^ack scenario, traffic generator Log files

13 Experiments Student sprint ApplicaAons Cross Border E- ID Student Loyalty program Students for cross country idenaty assurance via mobile MS You Prove E- ID Test bed Service Level Agreement Verizon UIS E- AuthenAcaAon Verizon UIS CredenAalling Testbed components Interface layer Test bed building blocks Management, monitoring and data collecaon IdenAty Assurance Management Login test accounts Log files

14 TDL Download Corner Operational available in September 2015 For more information:

TDL Recommendations to NIS (WG3/SRA)

TDL Recommendations to NIS (WG3/SRA) Editors: Pascal Bisson, Jim Clarke, Amardeo Sarma, Daan Velthausz, Volkmar Lotz, Arthur Leijtens, Stefan Bumerl Contributors: community members at large with special