Contract No.: 285248 Strategic Objective



Download 1.78 Mb.
Page1/54
Date28.01.2017
Size1.78 Mb.
#8871
  1   2   3   4   5   6   7   8   9   ...   54
image:fp7portrait_logo.jpg
Private Public Partnership Project (PPP)

Large-scale Integrated Project (IP)


image:fi-ware_logo.png
D.8.1.3: FI-WARE GE Open Specification

Project acronym: FI-WARE

Project full title: Future Internet Core Platform

Contract No.: 285248

Strategic Objective: FI.ICT-2011.1.7 Technology foundation: Future Internet Core Platform

Project Document Number: ICT-2011-FI-285248-WP8-D.8.1.3

Project Document Date: 2014-02-18

Deliverable Type and Security: Public

Author: FI-WARE Consortium

Contributors: FI-WARE Consortium

1.1Executive Summary


This document describes the Generic Enablers in the Interface to Networks & Devices chapter, their basic functionality and their interaction. These Generic Enablers form the core business framework of the FI-WARE platform by supporting the business functionality for commercializing services.

The functionality of the frame work is illustrated with several abstract use case diagrams, which show how the individual GE can be used to construct a domain-specific application environment and system architecture. Each GE Open Specification is first described on a generic level, describing the functional and non-functional properties and is supplemented by a number of specifications according to the interface protocols, API and data formats.


1.2About This Document


FI-WARE GE Open Specifications describe the open specifications linked to Generic Enablers GEs of the FI-WARE project (and their corresponding components) being developed in one particular chapter.

GE Open Specifications contain relevant information for users of FI-WARE to consume related GE implementations and/or to build compliant products which can work as alternative implementations of GEs developed in FI-WARE. The later may even replace a GE implementation developed in FI-WARE within a particular FI-WARE instance. GE Open Specifications typically include, but not necessarily are limited to, information such as:



  • Description of the scope, behavior and intended use of the GE

  • Terminology, definitions and abbreviations to clarify the meanings of the specification

  • Signature and behavior of operations linked to APIs (Application Programming Interfaces) that the GE should export. Signature may be specified in a particular language binding or through a RESTful interface.

  • Description of protocols that support interoperability with other GE or third party products

  • Description of non-functional features

1.3Intended Audience


The document targets interested parties in architecture and API design, implementation and usage of FI-WARE Generic Enablers from the FI-WARE project.

1.4Chapter Context


The overall ambition of the Security Architecture of FI-WARE is to demonstrate that the Vision of an Internet that is "secure by design" is becoming reality. Based on achievements to date and/or to come in the short-term (both from a technological but also a standardization perspective) we will show that "secure by design" is possible for the most important core (basic) and shared (generic) security functionalities as anticipated by the FI-WARE project and in accordance with the requirements of external stakeholders and users. The “secure by design” concept will, therefore, address both the security properties of the FI-WARE platform itself and the applications that will be built on top of it. As such, the Security Architecture will focus on key security functionalities such as identity management or security monitoring to be delivered as so-called generic security enablers which, by design, can be integrated with implementations of the FI-WARE GEs.

Security, Privacy and Trust in FI-WARE is mainly focusing on delivering tools and techniques to have the above-mentioned security needs properly met. Furthermore a decision making support and the automation of countermeasures allow alleviating the workload of users and administrators while raising their security awareness.

The high-level Reference Architecture sketched in Figure below is formed by four main modules:

1. Security monitoring,

2. Generic Security Services: Identity Management, Privacy, Data Handling, Access Control

3. Context-Based Security and Compliance,

4. Optional Generic Security Services: Secure Storage Service, Morphus antivirus, DB Anonymiser.

Theses services will be instantiated at runtime.



image:fiware_sec_arch_iv-2.png

FI-WARE High Level Security Architecture

More information on the Security Chapter and FI-WARE in general can be found within the following pages:

http://wiki.fi-ware.eu

The Architecture of Security in FI-WARE

Materializing Security in FI-WARE

1.5Structure of this Document


The document is generated out of a set of documents provided in the public FI-WARE wiki. For the current version of the documents, please visit the public wiki at http://wiki.fi-ware.eu/

The following resources were used to generate this document:

D.8.1.3 FI-WARE GE Open Specifications front page

FIWARE.OpenSpecification.Security.SecurityMonitoring

Security_Open_Specs_APIs

Security-Monitoring: Mulval Attack Path Engine Open API Specification

Security-Monitoring: Mulval Attack Path Engine Web Application Open API Specification

Security-Monitoring: Scored Attack Paths Open API Specification

Security-Monitoring:_Remediation_Open_API_Specification

Security-Monitoring: Service Level SIEM Open API Specification

Security-Monitoring: IoT Fuzzer Open API Specification

Security-Monitoring: Android Vulnerability Assessment Open API Specification

FIWARE.OpenSpecification.Security.IdentityManagement

Identity Management Generic Enabler API Specification

FIWARE.OpenSpecification.Security.Privacy_Generic_Enabler

Privacy_Open_RESTful_API_Specification

FIWARE.OpenSpecification.Security.Data_Handling_Generic_Enabler

FIWARE.OpenSpecification.Security.DataHandlingGE.Open RESTful API Specification

FIWARE.OpenSpecification.Security.Access_Control_Generic_Enabler

FIWARE.OpenSpecification.Security.AccessControlGE.Authorization.Open RESTful API Specification

FIWARE.OpenSpecification.Security.Optional_Security_Enablers.DBAnonymizer

FIWARE.OpenSpecification.Security.DBAnonymizer.Open RESTful API Specification

FIWARE.OpenSpecification.Security.Optional_Security_Enablers.SecureStorageService

Secure Storage Service Optional GE Open API Specification

FIWARE.OpenSpecification.Security.Optional_Security_Enablers.ContentBasedSecurity

FIWARE.OpenSpecification.Security.Optional Security Enablers.ContentBasedSecurity.Open RESTful API Specification

FIWARE.OpenSpecification.Security.Optional_Security_Enablers.MalwareDetectionService

Malware Detection Service Open API Specification

FIWARE.OpenSpecification.Security.Optional_Security_Enablers.AndroidFlowMonitoring

Android Flow Monitoring Open Specification

FI-WARE Open Specifications Legal Notice

Open Specifications Interim Legal Notice



Download 1.78 Mb.

Share with your friends:
  1   2   3   4   5   6   7   8   9   ...   54



The database is protected by copyright ©ininet.org 2024
send message
    Main page
current version
following resources
applications that
security architecture