{"id":328,"date":"2010-09-24T14:54:10","date_gmt":"2010-09-24T14:54:10","guid":{"rendered":"http:\/\/miguelpdl.com\/weblog\/?p=328"},"modified":"2011-01-29T21:23:45","modified_gmt":"2011-01-29T21:23:45","slug":"protection-and-trust-in-financial-infrastructures","status":"publish","type":"post","link":"https:\/\/miguelpdl.com\/weblog\/protection-and-trust-in-financial-infrastructures\/","title":{"rendered":"Protection and Trust in Financial Infrastructures"},"content":{"rendered":"<p><img data-recalc-dims=\"1\" decoding=\"async\" src=\"https:\/\/i0.wp.com\/www.parsifal-project.eu\/templates\/01\/images\/bk_head.png\" \/><br \/>\nNot one our first projects to start in the FP7 programme, but our first project to finish. <a href=\"http:\/\/www.parsifal-project.eu\/\" target=\"_blank\">PARSIFAL<\/a> was a coordination action, funded by the European Research Programme for Critical Infrastructure Protection. Its objective was to define how to better protect Critical Financial Infrastructures (CFI) in Europe.<br \/>\nThere were a limited set of partners on the project ATOS Origin Sae, Spain (coordinators), ACRIS GmbH, Switzerland; @bc &#8211; Arendt Business Consulting, Germany; Avoco Secure Ltd, UK; EDGE International BV, Netherlands and of coures ourselves from the TSSG.<br \/>\nThe key achievement of the project was to strengthened engagement between the European Commission and the Financial Services Industry in terms of trust, security and dependability. Financial Services are seen as a critical ICT infrastructures and so the purpose of this project was to provide direction for future research programmes, helping to align research in this area to the needs of the Financial Services Industry.<br \/>\n<a href=\"http:\/\/www.parsifal-project.eu\/images\/documents\/PARSIFAL_Marketing%20Document.pdf\" target=\"_blank\">Parsifal has produced a whitepaper to highlight its acheivements [pdf]<\/a>.<br \/>\nThere is also a document which gives some <a href=\"http:\/\/www.parsifal-project.eu\/index.php?option=com_content&#038;view=article&#038;id=70\" target=\"_blank\">further details of the main research gaps in the area<\/a> such as the classification of identity attributes for on-line and mobile users of financial services. The document points out this these  identity attributes should be defined and well understood by providers of these services and their customers and in particular the:<br \/>\n3.1 Classification of identity attributes for online and mobile users<br \/>\n3.2 Trust Indicators for financial services to determine risk level<br \/>\n3.3 Multiple-identity management platforms<br \/>\nWith the new dimension of cloud computing\/architectural changes and de-perimeterization, can lead to new needs for standardization and regulations (flexible virtual concentration)<br \/>\n4.1 Standard and cross border digital identities in the financial market<br \/>\n4.2 Data-linked security policies<br \/>\n4.3 De-perimeterization of organizations: models and cross order issues:<br \/>\n5.1 Design and implementation of secure platforms and applications<br \/>\n5.2 Model Definition<br \/>\nFor the full document <a href=\"http:\/\/www.parsifal-project.eu\/images\/documents\/PARSIFAL%20D3.6%20Gap%20Analysis%20and%20Future%20needs%20report.pdf\" target=\"_blank\">read Section 3.1 of the Gap analysis report by clicking here<\/a><br \/>\nOne of the main research items from the project has been the <a href=\"http:\/\/www.tssg.org\/PARSIFAL%20D2.1%20Draft%20Ontology%20of%20Financial%20Risks%20%26%2338%3B%20Dependencies%20Within%20and%20Without%20the%20Financial%20Sector%20V2.0%20%20%26%2340%3BOntologies%26%2341%3B.pdf\" target=\"_blank\">draft ontology of financial risks &#038; dependencies within and without the Financial Sector (D2.1 &#8211; V2.0) [pdf]<\/a>.<br \/>\nThe aim of the document is to contribute to a common understanding of the key concepts in risk management and financial infrastructures. It presents a simple model combining the ontologies from both the security and the financial sector.<br \/>\nThere are ontologies in three work areas (business continuity, control engineering, trusted sharing of sensitive \/confidential information). These ontologies lay the ground for further approaches, while one-page roadmaps illustrate the instant benefits of this approach.<br \/>\n<img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" alt=\"ASimpleOntologyofDigitalIdentity.png\" src=\"https:\/\/i0.wp.com\/www.tssg.org\/blog\/miguelpdl\/ASimpleOntologyofDigitalIdentity.png?resize=638%2C420\" width=\"638\" height=\"420\" \/><br \/>\nThere is an extensive structured glossary in the document too. This glossary is based on a compilation of terms, available from public institutions (like the European Central Bank) or known experts. It includes more terms appearing in the other deliverables of the Parsifal project and being especially relevant to our context.<br \/>\nThe main contributors to this work were J.-Yves Gresser, B. Haemmerli, S. Morrow, H. Arendt and Keiran Sullivan (TSSG), with Keiran leading a paper in the area <em>&#8220;Risk ontologies \u2013 Security or Trust? Terminological &#038; Knowledge Organisation&#8221;, TKE 2010, Sept. 2010.<\/em><br \/>\nAll in all not a bad output from a humble CSA.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Not one our first projects to start in the FP7 programme, but our first project to finish. PARSIFAL was a coordination action, funded by the European Research Programme for Critical Infrastructure Protection. Its objective was to define how to better protect Critical Financial Infrastructures (CFI) in Europe. There were a limited set of partners on [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"ngg_post_thumbnail":0,"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[50,66,54,43],"tags":[],"class_list":["post-328","post","type-post","status-publish","format-standard","hentry","category-eu","category-fp7","category-security","category-technology"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p7O9Cj-5i","jetpack-related-posts":[],"_links":{"self":[{"href":"https:\/\/miguelpdl.com\/weblog\/wp-json\/wp\/v2\/posts\/328","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/miguelpdl.com\/weblog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/miguelpdl.com\/weblog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/miguelpdl.com\/weblog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/miguelpdl.com\/weblog\/wp-json\/wp\/v2\/comments?post=328"}],"version-history":[{"count":1,"href":"https:\/\/miguelpdl.com\/weblog\/wp-json\/wp\/v2\/posts\/328\/revisions"}],"predecessor-version":[{"id":339,"href":"https:\/\/miguelpdl.com\/weblog\/wp-json\/wp\/v2\/posts\/328\/revisions\/339"}],"wp:attachment":[{"href":"https:\/\/miguelpdl.com\/weblog\/wp-json\/wp\/v2\/media?parent=328"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/miguelpdl.com\/weblog\/wp-json\/wp\/v2\/categories?post=328"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/miguelpdl.com\/weblog\/wp-json\/wp\/v2\/tags?post=328"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}