Technology Readiness Level
advertisement
Cluster Workshop on Cybersecurity Michele Bezzi (SAP) Kazim Hussain (ATOS) SecCord & CYSPA Projects 12/12/2013 Cluster Workshop on Cybersecurity 1 Introduction Objective: build together a map of current projects along three dimensions: • Cybersecurity objective (as extracted from EU Cybersecurity Strategy), • Target sector/s • Technology readiness Cybersecurity dimension Map the project according concepts extract from Strategic Priorities and Actions of EU Cybersecurity Strategy Document. http://ec.europa.eu/information_society/newsro om/cf/dae/document.cfm?doc_id=1667 (see details in the appendix) 4/13/2015 3 Other (security) tools. Specify in one-word International Cooperation Preventing masssurveillance/censorship Data Protection Confidence Building (trust) Cryptography Coordination Research Agendas Security Economics Security Labels (Certification) Transparency about security Cyberdefence Secure Internet for children Threat analysis Forensic tools Legal Framework NIS Education and Training Raising Awareness Cyber-incidents simulation Public-Private Partnership Incident Reporting CSP Forum Event: XXXXXX 4/13/2015 … Risk Management .. … PoSecCo SecCord Secure service discovery ASSERT4SOA Information Sharing Project Sector dimension Map project to (primary) sectors impacted (usecases, pilot, main target of the technology, partners,…) • Provide one word description per sector • If Sector not listed: add it under “Other” • If “Cross-Cutting” provide one-word description of the technology 4/13/2015 CSP Forum Event: XXXXXX 5 Primary Target Sectors Project ASSERT4SOA PoSecCo 4/13/2015 Transport eGov Certification for services Energy ICT Certified Marketplace Finance Health Other (specify) CrossCutting Defense Secure service discovery …. 6 Technology readiness dimension Map project to Technology readiness, based on the levels (see next slide) Technology Readiness typically evolve during project lifetime • Consider level per year • Insert future years based on plan/estimation between brackets, (2014) • Project finishing year in red 4/13/2015 7 Technology Readiness Level (adapted from NASA level) Description Basic principles observed and reported Technology concept and/or application formulated Technology Readiness Level 1 Basic Technology Research 2 Research to Prove Feasibility Analytical and experimental critical function and/or proof of concept 3 Software component validation in testbed 4 Software component validation in a relevant environment (actual use case) 5 Software system/prototype validation in a relevant environment (pilot) 6 Software system/prototype validation in a realworld scenario (large scale pilot) 7 Actual software system completed & validation in a real-world scenario 8 Actual system ready for commercialization 9 Technology Development Technology Demonstration System Development Production System Technology Readiness Basic Technology Research Project ASSERT4SOA Research to Technology Prove Feasibility Development Technology Demonstration 1 2 3 4 5 2011 2011 2012 2012 2013 2011 2011 2011 2012 2013 System Development 6 7 Production System 8 9 …. PoSecCo 2013 … 4/13/2015 9 References • • • • NASA Technology Readiness Level, Mankins, John C. Technology Readiness Levels: A White Paper". NASA, Office of Space Access and Technology, Advanced Concepts Office. (also discussion in SecCord Deliverable D6.1) Cybersecurity Strategy of the European Union: An Open, Safe and Secure Cyberspace JOIN(2013) 1 final - 7/2/2013 http://ec.europa.eu/information_society/newsroom/cf/dae/document.cfm?doc_id=1667 Proposal for a Directive of the European Parliament and of the Council concerning measures to ensure a high common level of network and information security across the Union - COM(2013) 48 final - 7/2/2013 – EN http://ec.europa.eu/information_society/newsroom/cf/dae/document.cfm?doc_id=1666 CSP Forum and SecCord http://www.cspforum.eu/ 4/13/2015 10 Appendix Next slide provides the list of concepts extracted from EU Cybersecurity Strategy documents, and used in the map. 4/13/2015 11 EU Cybersecurity Strategies Priorities and concepts 1. Cyber resilience • • • • • • • • 2. Information sharing & mutual assistance amongst NIS authorities Best practice for sharing Risk Management Incident Reporting Public-Private Partnership Cyber-incidents simulation Raising Awareness NIS Education and Training Reducing cyber crime • • • • • • • 3. Legal framework Forensic Tools Threat Analysis Other tools NIS Training for law enforcement Better internet for children Information sharing & mutual assistance 4. Develop the industrial and technological resources for cybersecurity • • • • • 5. Transparency about security in ICT Products Security Labels (Certification) Security Economics Coordination Security Research Agendas Cryptography Coherent international cyberspace policy for EU • • • • Confidence Building & transparency Data Protection Preventing mass-surveillance/censorship International cooperation Cyberdefence policy and capabilities related to the Common Security and Defense Policy (CSDP) • • 4/13/2015 Cyberdefence tools Cyberdefence policy 12
