Hi all, Here are a few thoughts about security. There are standards in security such as ISO 27000, in fact there are many security standards but this one in independent of security technologies. The main recommendations are: · To preserve: o confidentiality <http://en.wikipedia.org/wiki/Confidentiality> (ensuring that information is accessible only to those authorised to have access), o integrity <http://en.wikipedia.org/wiki/Integrity> (safeguarding the accuracy and completeness of information and processing methods) o availability <http://en.wikipedia.org/wiki/Availability> (ensuring that authorised users have access to information and associated assets when required). · To assert the security situation at regular intervals · To put in place actions to mitigate risks. · To make it possible to audit the situation. Obviously in I2ND we don't deal with security but we have to make it possible that the people of the art can do his own stuff. It's my understanding that we should provide: · Classical means to protect: o confidentiality which means authenticating users/networks/devices/services with WP8 Identity enabler. o Integrity mostly by using encryption (I don't know if WP8 has some recommendation here) o Availability by detecting anomalous situation when an authorized user wants to access its service/device/network (kinda exception management) · We have to provide to WP8 some information to make them able to assert (review) WP7 security situation. The best is probably to ask them their requirements in this area. · We have to provide some programmability in our own enablers (the contrary to hard wired architecture) to make it possible for WP8 guys to put in place mitigating actions, again we should ask them about what they intend to do. · We have to provide WP8 a secured access to some WP7 general indicators about deviations to normal situations (anomaly detection). It's only some random ideas, don't hesitate to comment them. Best regards, Jean-Pierre De : fiware-i2nd-bounces at lists.fi-ware.eu [mailto:fiware-i2nd-bounces at lists.fi-ware.eu] De la part de Garino Pierangelo Envoyé : mardi 18 octobre 2011 09:50 À : Corici, Marius-Iulian Cc : fiware-i2nd at lists.fi-ware.eu Objet : [Fiware-i2nd] R: I2ND S3C and NetIC vs. Security WP Hi Marius, actually as first attempt I expected to gather some comment to the Security chapter description (to understand what they propose and this could impact I2ND), while you did a more detailed analysis about what contribution could come from the I2ND side to those GEs. The two options are of course not alternative but rather complementary, so I propose we keep both of them, and provide by today their contents to the Security people. My input is attached to this mail, I kindly ask the other delegates of the Security Task Force (Henk/Serge, Chris ) to add their comments in any of the two documents (this one or the one sent by Marius yesterday) *by today early afternoon*, thanks. BR Pier Da: fiware-i2nd-bounces at lists.fi-ware.eu [mailto:fiware-i2nd-bounces at lists.fi-ware.eu] Per conto di Corici, Marius-Iulian Inviato: lunedì 17 ottobre 2011 17:16 A: fiware-i2nd at lists.fi-ware.eu Oggetto: [Fiware-i2nd] I2ND S3C and NetIC vs. Security WP Hello, Attached is a document trying to respond with the expected information which is offered by S3C and NetIC to the Security GEs. This comes as an addition to the previous document with the functionality requested from the Security GEs. Please let us know on your comments on the document. Greetings, Marius Corici From: Garino Pierangelo [mailto:pierangelo.garino at telecomitalia.it] Sent: Thursday, October 13, 2011 10:23 AM To: Corici, Marius-Iulian; BANNIZA, Thomas-Rolf; pasquale.donadio at alcatel-lucent.com Cc: fiware-i2nd at lists.fi-ware.eu Subject: R: I2ND Confcall - 12 Oct - Minutes Hi All, I apologise it was my mistake: I had a search filter set, so I couldn't see all the entries in the tracker... Marius, I have made small modification in your tickets to comply with the naming convention for the summary field (inverting FIWARE and EPIC position). I also modified the entry by Pasquale to comply with same rule as well. BR Pier Da: Corici, Marius-Iulian [mailto:marius-iulian.corici at fokus.fraunhofer.de] Inviato: giovedì 13 ottobre 2011 10:08 A: Garino Pierangelo; BANNIZA, Thomas-Rolf Cc: fiware-i2nd at lists.fi-ware.eu Oggetto: RE: I2ND Confcall - 12 Oct - Minutes Hello, I've added the epics from S3C on the given link. Please let us know if its ok. https://forge.fi-ware.eu/tracker/index.php?group_id=10&atid=192 Greetings, Marius Corici From: Garino Pierangelo [mailto:pierangelo.garino at telecomitalia.it] Sent: Thursday, October 13, 2011 9:41 AM To: 'BANNIZA, Thomas-Rolf'; Corici, Marius-Iulian Cc: fiware-i2nd at lists.fi-ware.eu Subject: R: I2ND Confcall - 12 Oct - Minutes Marius, Thomas, Do you have troubles in inserting the tickets in the i2nd 'Backlog management' tracker for NetIC and S3C, as I don't see them there? If needed, please let me know and I can help you completing the insertion. BR Pier Da: fiware-i2nd-bounces at lists.fi-ware.eu [mailto:fiware-i2nd-bounces at lists.fi-ware.eu] Per conto di Garino Pierangelo Inviato: mercoledì 12 ottobre 2011 14:09 A: Woods, Chris Cc: fiware-i2nd at lists.fi-ware.eu Oggetto: [Fiware-i2nd] R: I2ND Confcall - 12 Oct - Minutes Great Chris J BR Pier Da: Woods, Chris [mailto:chris.woods at intel.com] Inviato: mercoledì 12 ottobre 2011 12:33 A: Garino Pierangelo; fiware-i2nd at lists.fi-ware.eu Oggetto: RE: I2ND Confcall - 12 Oct - Minutes RE: I2ND57 - Backlog tracker entries per EPIC for CDI are now available: https://forge.fi-ware.eu/tracker/?atid=192&group_id=10&func=browse From: fiware-i2nd-bounces at lists.fi-ware.eu [mailto:fiware-i2nd-bounces at lists.fi-ware.eu] On Behalf Of Garino Pierangelo Sent: Wednesday, October 12, 2011 11:01 AM To: fiware-i2nd at lists.fi-ware.eu Subject: [Fiware-i2nd] I2ND Confcall - 12 Oct - Minutes Dear Partners, you can find the minutes of today's confcall here: https://forge.fi-ware.eu/docman/view.php/10/483/I2ND_Confcall_20111012_minutes.doc Best Regards Pier ------------------------------------------------------------------ Telecom Italia Pierangelo Garino Innovation & Industry Relations - Research & Prototyping Via G. Reiss Romoli 274, I-10148 TORINO Tel: +39 011 228 7142 Questo messaggio e i suoi allegati sono indirizzati esclusivamente alle persone indicate. La diffusione, copia o qualsiasi altra azione derivante dalla conoscenza di queste informazioni sono rigorosamente vietate. Qualora abbiate ricevuto questo documento per errore siete cortesemente pregati di darne immediata comunicazione al mittente e di provvedere alla sua distruzione, Grazie. This e-mail and any attachments is confidential and may contain privileged information intended for the addressee(s) only. Dissemination, copying, printing or use by anybody else is unauthorised. If you are not the intended recipient, please delete this message and any attachments and advise the sender by return e-mail, Thanks. Rispetta l'ambiente. Non stampare questa mail se non è necessario. ------------------------------------------------------------- Intel Ireland Limited (Branch) Collinstown Industrial Park, Leixlip, County Kildare, Ireland Registered Number: E902934 This e-mail and any attachments may contain confidential material for the sole use of the intended recipient(s). Any review or distribution by others is strictly prohibited. If you are not the intended recipient, please contact the sender and delete all copies. Questo messaggio e i suoi allegati sono indirizzati esclusivamente alle persone indicate. La diffusione, copia o qualsiasi altra azione derivante dalla conoscenza di queste informazioni sono rigorosamente vietate. Qualora abbiate ricevuto questo documento per errore siete cortesemente pregati di darne immediata comunicazione al mittente e di provvedere alla sua distruzione, Grazie. This e-mail and any attachments is confidential and may contain privileged information intended for the addressee(s) only. Dissemination, copying, printing or use by anybody else is unauthorised. If you are not the intended recipient, please delete this message and any attachments and advise the sender by return e-mail, Thanks. Rispetta l'ambiente. Non stampare questa mail se non è necessario. Questo messaggio e i suoi allegati sono indirizzati esclusivamente alle persone indicate. La diffusione, copia o qualsiasi altra azione derivante dalla conoscenza di queste informazioni sono rigorosamente vietate. Qualora abbiate ricevuto questo documento per errore siete cortesemente pregati di darne immediata comunicazione al mittente e di provvedere alla sua distruzione, Grazie. This e-mail and any attachments is confidential and may contain privileged information intended for the addressee(s) only. Dissemination, copying, printing or use by anybody else is unauthorised. If you are not the intended recipient, please delete this message and any attachments and advise the sender by return e-mail, Thanks. Rispetta l'ambiente. Non stampare questa mail se non è necessario. Questo messaggio e i suoi allegati sono indirizzati esclusivamente alle persone indicate. La diffusione, copia o qualsiasi altra azione derivante dalla conoscenza di queste informazioni sono rigorosamente vietate. Qualora abbiate ricevuto questo documento per errore siete cortesemente pregati di darne immediata comunicazione al mittente e di provvedere alla sua distruzione, Grazie. This e-mail and any attachments is confidential and may contain privileged information intended for the addressee(s) only. Dissemination, copying, printing or use by anybody else is unauthorised. If you are not the intended recipient, please delete this message and any attachments and advise the sender by return e-mail, Thanks. Rispetta l'ambiente. Non stampare questa mail se non è necessario. Questo messaggio e i suoi allegati sono indirizzati esclusivamente alle persone indicate. La diffusione, copia o qualsiasi altra azione derivante dalla conoscenza di queste informazioni sono rigorosamente vietate. Qualora abbiate ricevuto questo documento per errore siete cortesemente pregati di darne immediata comunicazione al mittente e di provvedere alla sua distruzione, Grazie. This e-mail and any attachments is confidential and may contain privileged information intended for the addressee(s) only. Dissemination, copying, printing or use by anybody else is unauthorised. If you are not the intended recipient, please delete this message and any attachments and advise the sender by return e-mail, Thanks. Rispetta l'ambiente. Non stampare questa mail se non è necessario. -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://lists.fiware.org/private/old-fiware-i2nd/attachments/20111018/33a25b47/attachment.html> -------------- next part -------------- A non-text attachment was scrubbed... Name: image001.gif Type: image/gif Size: 677 bytes Desc: image001.gif URL: <https://lists.fiware.org/private/old-fiware-i2nd/attachments/20111018/33a25b47/attachment.gif>
You can get more information about our cookies and privacy policies clicking on the following links: Privacy policy Cookies policy