|
|
|
|
A1 - Organization & Business |
Organization & Business focus activity |
|
This activity will focuses on high-level business, management and organizational policies for privacy and security at enterprise level.
| |
- 1. To identify the constructs that are appropriate to model the security, privacy and trust requirements at enterprise and infrastructural level,
- 2. To define security and privacy patterns to fulfil such requirements both in terms of high level IT solutions (such as workflows) and organizational procedures (such code of practice for human staff or organizational structure such as structure-in-five),
- 3. To support the security engineer with computer aided mechanisms for the analysis of his/her proposed solutions and for automatically supporting the integration of patterns by integration schemes,
- 4. To identify metrics to assess the quality of protection achieved by an organization and the methodologies and some tool support to monitor at run-time the current level of security and privacy, possibly triggering alarms.
|
|
Work package 1.1 and deliverables
Trends and evolution of existing approaches on S & D models and methodologies
|
|
Work package 1.2 and deliverables
Definition of S&D requirements at organizational level
|
|
Work package 1.3 and deliverables
Identification and specification of Security, Dependability and Privacy Patterns
|
|
Work package 1.4 and deliverables
Development of Computer aided mechanisms for the verification and customization of Security and Privacy patterns
|
|
Work package 1.5 and deliverables
Identifications of Security & Privacy threats, risks, and metrics for patterns at organizational level
|
|
|
Associated WP
