Dependability in the Information Society: getting ready for the FP6

Similar documents
Framework Programme 7

)XWXUH FKDOOHQJHV IRU WKH WRXULVP VHFWRU

COST FP9 Position Paper

Please send your responses by to: This consultation closes on Friday, 8 April 2016.

A Harmonised Regulatory Framework for Supporting Single European Electronic Market: Achievements and Perspectives

Engaging Stakeholders

Conclusions on the future of information and communication technologies research, innovation and infrastructures

Roadmap Pitch: Road2CPS - Roadmapping Project Platforms4CPS Roadmap Workshop

MILAN DECLARATION Joining Forces for Investment in the Future of Europe

Scoping Paper for. Horizon 2020 work programme Societal Challenge 4: Smart, Green and Integrated Transport

The 26 th APEC Economic Leaders Meeting

Written response to the public consultation on the European Commission Green Paper: From

Lithuania: Pramonė 4.0

ARTEMIS The Embedded Systems European Technology Platform

Integrated Transformational and Open City Governance Rome May

demonstrator approach real market conditions would be useful to provide a unified partner search instrument for the CIP programme

Digital Content Preliminary SWOT Analysis

Pan-Canadian Trust Framework Overview

FP7 Funding Opportunities for the ICT Industry

APEC Internet and Digital Economy Roadmap

Roadmap for European Universities in Energy December 2016

Horizon 2020 Towards a Common Strategic Framework for EU Research and Innovation Funding

Framework Programme VI IST Priority ICT for Enterprise Networking

Engaging UK Climate Service Providers a series of workshops in November 2014

CAPACITIES. 7FRDP Specific Programme ECTRI INPUT. 14 June REPORT ECTRI number

ICT : Internet of Things and Platforms for Connected Smart Objects

CyPhers Project: Main Results

UN-GGIM Future Trends in Geospatial Information Management 1

FP7 ICT Work Programme

SMART PLACES WHAT. WHY. HOW.

Our position. ICDPPC declaration on ethics and data protection in artificial intelligence

Potential areas of industrial interest relevant for cross-cutting KETs in the Electronics and Communication Systems domain

Annual Report 2010 COS T SME. over v i e w

DBE and the eeconomy Arturo di Corinto Neil Rathbone

Horizon 2020 ICT Robotics Work Programme (draft - Publication: 20 October 2015)

COUNCIL OF THE EUROPEAN UNION. Brussels, 9 December 2008 (16.12) (OR. fr) 16767/08 RECH 410 COMPET 550

8365/18 CF/nj 1 DG G 3 C

Information Society Technologies in the 6th Framework Programme. Tom Bo Clausen Project Officer European Commission, IST programme Embedded Systems

The main recommendations for the Common Strategic Framework (CSF) reflect the position paper of the Austrian Council

Belgian Position Paper

ICT : Future Hyper-connected Sociality. DG CONNECT European Commission

Hamburg, 25 March nd International Science 2.0 Conference Keynote. (does not represent an official point of view of the EC)

Welcome to the future of energy

Research Infrastructures and Innovation

Promoting citizen-based services through local cultural partnerships

Work Programme

The efoodchain Action Workshop

International comparison of education systems: a European model? Paris, November 2008

Section 1: Internet Governance Principles

Performance indicators towards sustainability. Reporting framework for cities

DEPUIS project: Design of Environmentallyfriendly Products Using Information Standards

Towards a systemic approach to unlock the transformative power of service innovation

Rethinking the role of Social Sciences and Humanities (SSH) in Horizon 2020: toward a reflective and generative perspective

Enabling ICT for. development

Position Paper. CEN-CENELEC Response to COM (2010) 546 on the Innovation Union

(Acts whose publication is obligatory) of 9 March 2005

Horizon Work Programme Leadership in enabling and industrial technologies - Introduction

Summary Remarks By David A. Olive. WITSA Public Policy Chairman. November 3, 2009

Scoping Paper for. Horizon 2020 work programme Leadership in Enabling and Industrial Technologies Space

COMMISSION OF THE EUROPEAN COMMUNITIES

Foresight Impact on Policy making and Lessons for New Member States and Candidate Countries Insights from the FORLEARN mutual learning process

Outline. IPTS and the Information Society Unit IPTS Research Agenda on ICT for Governance

Information & Communication Technologies

ICT - INFORMATION AND COMMUNICATION TECHNOLOGIES

Home platforms and services: On the need for synergies between research and Standardisation

European Circular Economy Stakeholder Conference Brussels, February 2018 Civil Society Perspectives

Advanced Manufacturing

IoT governance roadmap

Research and Innovation Strategy for the Smart Specialisation of Catalonia. Brussels March 20th, 2014

PPP InfoDay Brussels, July 2012

Perspectives of Embedded Systems Engineering in the EU framework programme for research

GEAR 2030 WORKING GROUP 2 Roadmap on automated and connected vehicles

REPORT FROM THE COMMISSION TO THE EUROPEAN PARLIAMENT AND THE COUNCIL. on the evaluation of Europeana and the way forward. {SWD(2018) 398 final}

Towards a Magna Carta for Data

Meeting Report (Prepared by Angel Aparicio, Transport Advisory Group Rapporteur) 21 June Introduction... 1

Intergovernmental Group of Experts on E-Commerce and the Digital Economy First session. 4-6 October 2017 Geneva. Statement by SINGAPORE

The Institute for Communication Technology Management CTM. A Center of Excellence Marshall School of Business University of Southern California

European Charter for Access to Research Infrastructures - DRAFT

"The future of Social Sciences and Humanities in Horizon 2020"

PRESENTATION OUTLINE

Into Moving Forward to Automated Driving. In this issue: ITS World Congress in Montreal. CARTRE and ERTRAC Joint Workshop

the EU framework programme for research and innovation

Secretary-General of the European Commission, signed by Mr Jordi AYET PUIGARNAU, Director

RECOMMENDATIONS. COMMISSION RECOMMENDATION (EU) 2018/790 of 25 April 2018 on access to and preservation of scientific information

Seoul Initiative on the 4 th Industrial Revolution

The ICT industry as driver for competition, investment, growth and jobs if we make the right choices

Innovative public procurement case Finland

DIGITAL FINLAND FRAMEWORK FRAMEWORK FOR TURNING DIGITAL TRANSFORMATION TO SOLUTIONS TO GRAND CHALLENGES

EOSC Governance Development Forum 6 April 2017 Per Öster

Horizon 2020 and CAP towards 2020

How to write a Successful Proposal

Technology Platforms: champions to leverage knowledge for growth

What is Digital Literacy and Why is it Important?

CIVIC EPISTEMOLOGIES Civic Epistemologies: Development of a Roadmap for Citizen Researchers in the age of Digital Culture Workshop on the Roadmap

12808/16 PG/cb 1 DG G 3 C

A Science & Innovation Audit for the West Midlands

Metrology in the Digital Transformation

Smart Management for Smart Cities. How to induce strategy building and implementation

CERN-PH-ADO-MN For Internal Discussion. ATTRACT Initiative. Markus Nordberg Marzio Nessi

Digital transformation in the Catalan public administrations

Transcription:

Dependability in the Information Society: getting ready for the FP6 Andrea Servida 1 European Commission, DG Information Society C-4, B1049 Brussels, Belgium andrea.sevida@cec.eu.int http://deppy.jrc.it/ Abstract. The dependable behaviour of information infrastructures is critical to achieve trust & confidence in any meaningful realisations of the Information Society. The paper briefly discusses the aim and scope of the Dependability Initiative under the Information Society Technologies Programme and presents the activities that have recently been launched in this area to prepare the forthcoming Framework Programme 6 th of the European Commission. 1 Introduction The Information Society is increasingly dependent on largely distributed systems and infrastructures for life-critical and business-critical functions. The complexity of systems in Information Society is rapidly increasing because of a number of factors like the size, unboundness and interdependency as well as the multiplicity of actors involved, the need to pursue more decentralised control and growing sophistication in functionality. This trend together with the increasing use of open information infrastructures for communications, freeware software and common application platforms expose our society to new vulnerabilities and threats that would need better understanding, assessment and control. The dependable and predictable behaviour of information infrastructures provides the basis for Trust & Confidence (T&C) in any meaningful realisations of the global Information Society and, in particular, in Electronic Commerce. However, the expectation and perception of T&C are dramatically changing under the pressures new business, technological and societal drivers among which are: the deregulation in telecommunications, which has led to the emergence of new players, actors and intermediaries inter-playing in new added value chains, multi-national consortiums, services and applications but also to the blurring of sector and jurisdictional boundaries; 1 Disclaimer: The content of this paper is the sole responsibility of the author and in no way represents the view of the European Commission or its services

the convergence of communications and media infrastructures together with the interoperability of systems and services, which has boosted the deployment of unbounded network computing and communication environments; the realisation of information as an asset, which has facilitated the transition of companies from a manufacturing-centred to an information/knowledge management centred model with quality met production at the lowest point of global cost; the globalisation of services, markets, reach-ability of consumers and companies with virtual integration of business processes; the emergence of new threats and vulnerabilities, which are mostly connected with the increased openness and reach-ability of the infrastructures; the realisation by a number of nations that information superiority brings strategic gains; the increased sophistication and complexity of individual systems; the changes in the traditional chain of trust which is affected by blurring of geographic border and boundaries. The European Dependability Initiative, called in short DEPPY [1], is a major R&D initiative under the Information Society Technologies Programme [2] to develop technologies, systems and capability to tackle the emerging dependability challenges in the Information Society. The experience gained in DEPPY has shown that to attain these new challenges objectives there is a need to foster the integration of research efforts and resources coming from a number of areas such as security, fault tolerance, reliability, safety, survivability but network engineering, psychology, human factor, econometrics, etc. In the following we would present how DEPPY has developed and discussed the new dependability challenges which could be tackled in the forthcoming 6 th Framework Programme [3] of the European Commission (called in short FP6). 2 The European Dependability Initiative DEPPY was launched 1997/1998 as an initiative of the IST Programme with the primary objective of addressing dependability requirements in tightly connected systems and services, which are at the basis of the Information Society. The mission statement for the DEPPY was: to contribute towards raising and assuring trust and confidence in systems and services, by promoting dependability enabling technologies. This mission statement embraces the main goals, precisely: fostering the development of new dependability technologies, and using better the available dependability technologies.

2.1 The DEPPY objectives Five key objectives were identified as qualifying the success of DEPPY, precisely: fostering a dependability-aware culture, which would include promoting innovative approaches to dependability, disseminating industrial best practice and training to promote the ability to work in multi-disciplinary teams; providing a workable characterisation of affordable dependability, which would support the integration and layering of services, the assurance of quality of intangible assets and the certification of both new distributed architectures and massively deployed embedded systems; facilitating global interoperable trust frameworks, that would also consider mediation and negotiation along chains of trust, dependable business process integration and guidance on issues of liability that might arise from system failures in large-scale distributed and embedded settings and; mastering heterogeneous technical environments, including the integration of COTS and legacy systems software into Internet based applications, rapid recovery strategies and mechanisms to preserve essential services and business continuity, systems composability, dependability assurance and verification in dynamic environments; managing dependability and risk in largely distributed and open systems-of-systems environments, including dependability assurance and verification, united frameworks for modelling and validation, flexible business driven models of dependability. In the following, we will briefly discuss the main element of the DEPPY research agenda as it developed through the years. 2.2 The DEPPY research agenda The DEPPY research agenda was determined on an early basis in line with the overall approach taken to define the Workprogramme for the IST Programme in which DEPPY was present as a Cross-Programme Action [4]. In 1999, the research agenda for DEPPY focussed on dependability in services and technologies and, in particular on: technologies, methods and tools to meet the emerging dependability requirements stemming from the ubiquity and volume of embedded and networked systems and services, the global and complex nature of large-scale information and communication infrastructures, risk and incident management tools as well as on privacy enhancing technologies, self-monitoring, self-healing infrastructures and services.

Seven R&D projects were funded covering technical areas like intrusion tolerance paradigm in largely distributed systems, the dependable composition of systems-ofsystems and advance tools for embedded system design. In 2000, the technical focus was on promoting research and industrially oriented projects in areas like: large scale vulnerabilities in multi-jurisdictional and unbounded systems; information assurance; survivable systems relying on self organising and self-diagnostic capabilities; dependability of extensively deployed and tightly networked embedded systems; risk management of largely distributed and open systems-of-systems; methods for workable characterisation of affordable dependability. Beside these technical objectives, we also tried to stimulate the international collaboration in particular with the US. Six projects were funded on areas like dependability benchmarks for COTS, security of global communication networks, methods and tools for assuring dependability and, last but not least, management and control systems for electrical supply and for telecommunications networks. The objectives set for the year 2001, which were logically built on the work of the previous years, were also closely related to the action on dependability of information infrastructures which was part of the Secure networks and smart cards objective of the eeurope 2002 Action Plan [3]. Such an action aimed to stimulate public/private co-operation on dependability of information infrastructures (including the development of early warning systems) and improve co-operation amongst national 'computer emergency response teams'. In this respect, the technical objectives for 2001 focussed on developing: innovative and multidisciplinary approaches, methods and technologies to build and manage dependability properties of large-scale infrastructures composed of tightly networked embedded systems. methods and technologies to model and manage dependability and survivability of globally interdependent systems and highly interconnected critical infrastructures. technologies to measure, verify and monitor dependability properties and behaviours of large-scale unbounded systems. Of the three projects funded one, called Dependability Development Support Initiative [6] contributes to raise awareness that making the information infrastructure dependable would mean protecting our industry wealth and investments in information and communication technologies as well as in other intangible assets. 3 The future: towards FP6 The experience gained with DEPPY shows that we just start to understand what is the scope of the technological, economic and social implications and challenges connected with the increasing reliance of our economy and society on digital communication networks and systems. Such a reliance is developed through an unprece-

dented scale of integration and interconnectedness of highly heterogeneous systems that are, individually and collectively, emergent, that is, the result of the casual or intentional composition of smaller and more homogeneous components. These aspects are critical in the area networked embedded systems and components where the large volume of deployed networked devices bring to the surface novel and unique system challenges. Lastly, this scenario is made even more complex by the large variety of patterns of use, user profiles and deployment environments. In the following, are some of the issues that we believe may characterise the context for future activities on dependability: In the area of open information infrastructure and unbounded networks there is a growing demand for "working and affordable dependability" which leads to the need to holistically address issues of safety, security, availability survivability, etc. This could only be accomplished by both stimulating innovative multidisciplinary approaches as well as facilitating the convergence of diverse scientific cultures and technical communities. In the network security arena there is a clear shift from "resist to attack" to survive and adapt. The target of "absolute security & zero risk" is unfeasible in domains where openness and interconnectivity are vital elements for successful operations. In this respect, the notion of "adaptable environment" (which would have a level of self awareness ), within which security performance, quality of services and risks should be managed, is becoming the key element of any operational strategy. There is no language to describe dependability of unbounded systems and infrastructures, nor there are global dependability standards. Hence, novel multidimensional models (which also cover behaviour, composition, physical elements, thermal properties, etc.) and approaches should be developed. In the area of survivability and dependability, the R&D often drives the Policy activity, but Policy must also drive R&D. There is a need to ensure dependability of critical infrastructures across Nations. In this respect, the meaning of "critical" varies because of Trans-national dependencies. A common knowledge base for this purpose does not exist. Pooling R&D resources across nations can build such knowledge. We are just at the beginning of distributed computing and the pace of its change is dramatic. Very monolithic platforms would disappear to be replaced by new computing platforms/fabric whose impact on dependability is to be ascertained. The next dependability challenge would be related to networks bandwidth and latency. It is anticipated that both the global and the local (intimately related to emerging short-scale interaction/communication means and capability) dimensions and aspects of cyberspace deserve a fundamental paradigm shift in conceiving and realising a globally (including the time dimension) trustworthy and secure Information Society.

Software is still the big problem. Achieving the automated (similarly to what is an automated banking process) production and evolution of software seems to be the good target, but we are still very far away from it. In the e-commerce environment software is getting more and more a utility for which scalability is more important than features. From a business perspective there is no difference between "intentional" (normally dealt with in the "security" context) and "unintentional" (normally dealt with in the safety context) disruptive events. From a business perspective there is no difference between a virus and a bug or from a bomb and a quake. The human component is still a very critical to the dependability of systems and organisations. For the future, the overall goal of pursuing dependability and interdependencies in Information Society would have to support innovative and multidisciplinary RTD to tackle scale issues of dependability connected with new business and everyday life application scenarios such as (i) the increasing volatility and growing heterogeneity of products, applications, services, systems and processes in the digital environment as well as (ii) the increasing interconnection and interdependency of the information and communication infrastructure and with other vital services and systems for our society and our economy. This would lead to new areas for research on dependability aiming at building robust foundations for Information Society through novel multidisciplinary and innovative system-model approaches, architectures and technologies to realise dependable, survivable and evolvable systems, platforms and information infrastructures; understanding, modelling and controlling the interdependencies among largescale systems and infrastructures resulting from the pervasiveness and interconnectedness of information and communication technologies. 3.1 Towards FP6: the Roadmap Projects In order to prepare the ground for research initiatives in the FP6 [7], with particular attention to the new instruments of Integrated Projects (IP) and Networks of Excellence (NoE) [8], seven Roadmap projects on security and dependability have recently been launched with the goals: to identify the research challenges in the respective area, to assess Europe s competitive position and potential, and to derive a strategic roadmaps for applied research driven by visionary scenarios; to build constituencies and reach consensus by means of feedback loops with the stakeholders at all relevant levels. The projects address issues around securing infrastructures, securing mobile services, dependability, personal trusted devices, privacy and basic security technologies. Below is a short summary of the three Roadmap projects on dependability, precisely

AMSD, which focuses on a global and holistic view of dependability; ACIP, which tackles the are of simulation and modelling for critical infrastructure protection; WG- ALPINE, which looks at survivability and loss prevention aspects. These roadmaps would nicely complement and enrich the work of DDSI that tackles the area of dependability from a policy support angle. AMSD - IST-2001-37553: Accompanying Measure System Dependability This project addresses the need for a coherent major initiative in FP6 encompassing a full range of dependability-related activities, e.g. RTD on the various aspects of dependability per se; (reliability, safety, security, survivability, etc.), education and training; and means for encouraging and enabling sector-specific IST RTD projects to use dependability best practice. It is aimed at initiating moves towards the creation of such an Initiative, via road- mapping and constituency and consensus building undertaken in co-operation with groups, working in various dependability-related topic areas, who are already undertaking such activities for their domains. The results will be an overall dependability roadmap that considers dependability in an adequately holistic way, and a detailed roadmap for dependable embedded systems. ACIP - IST-2001-37257: Analysis & Assessment for Critical Infrastructure Protection Developed societies have become increasingly dependent on ICT and services. Infrastructures such as IC, banking and finance, energy, transportation, and others are relying on ICT and are mutually dependent. The vulnerability of these infrastructures to attacks may result in unacceptable risks because of primary and cascading effects. The investigation of cascading and feedback effects in highly complex, networked systems requires massive support by computer-based tools. The aim of ACIP is to provide a roadmap for the development and application of modelling and simulation, gaming and further adequate methodologies for the following purposes: identification and evaluation of the state of the art of CIP; analysis of mutual dependencies of infrastructures and cascading effects; investigation of different scenarios in order to determine gaps, deficiencies, and robustness of CIS; identification of technological development and necessary protective measures for CIP. WG-ALPINE - IST-2001-38703 : Active Loss Prevention for ICT-enabled Enterprise Working Group The main objective of this project is the creation, operation and consolidation of an Active Loss Prevention Working Group to address the common ICT Security problems faced by users, achieve consensus on their solutions across multiple disciplines, and produce a favourable impact in the overall ebusiness market. The Working Group approaches the problems from an ICT user perspective, with spe-

cial emphasis on the view of small/medium systems integrators (SMEs), while establishing liaisons with all players, including representatives from the key European professional Communities that must collaborate to achieve a more effective approach to ICT Security. These include legal, audit, insurance, accounting, commercial, government, standardisation bodies, technology vendors, and others. DDSI IST-2001-29202 : Dependability Development Support Initiative The goal of DDSI is to support the development of dependability policies across Europe. The overall aim of this project is to establish networks of interest, and to provide baseline data upon which a wide spectrum of policy-supporting activities can be undertaken both by European institutions and by public and private sector stakeholders across the EU and in partner nations. By convening workshops, bringing together key experts and stakeholders in critical infrastructure dependability, DDSI facilitates the emergence of a new culture of Trans-national collaboration in this field, which is of global interest, and global concern. In order to make rapid progress in the area, the outcomes of the workshops as well as the information gathered in order to prepare for the workshops will be actively disseminated towards a wider, but still targeted community of interest, including policy makers business, decision makers, researchers and other actors already actively contributing to this field today. 4 Conclusions The construction of the Information Society and the fast growing development of e- commerce are making our Society and Economy more and more dependent on computer based information systems, electronic communication networks and information infrastructures that are becoming pervasive as well as an essential part of the EU citizens live. Achieving the dependable behaviour of the Information Society means protecting our industry wealth and investments in IT as well as in other intangible assets. Furthermore, achieving the dependable behaviour of the infrastructure would mean ensuring flexible and co-operative management of the large-scale computing and networking resources and providing resources for effective prevention detection, confinement and response to disruptions. The dependable behaviour of the information infrastructure depends, however, on the behaviour of a growing number of players, systems and networks, including the users and the user systems. The interdependency among critical infrastructures that are enabled and supported by the information infrastructure can not be easily mastered by currently available technologies. The dependability approach, which privileges the understanding of the implication of our need to rely on systems and, consequently, the adoption of a risk management approach, appears to be instrumental to foster a new culture of social and economic responsibility. However, more innovative and multidisciplinary research

on dependability is needed to make the Information Society more robust and resilient to technical vulnerability, failures and attacks. 5 Web references 1. DEPPY Forum htpp:/deppy.jrc.it/ 2. IST web site www.cordis.lu/ist 3. IST in FP6 http://www.cordis.lu/ist/fp6/fp6.htm 4. Cross Programme Action on dependability http://www.cordis.lu/ist/cpt/cpa4.htm 5. eeurope 2002 Action Plan http://europa.eu.int/information_society/eeurope/index_en.htm 6. DDSI web site http://www.ddsi.org/ddsi/index.htm 7. FP6 http://europa.eu.int/comm/research/fp6/index_en.html 8. FP6 Instruments http://europa.eu.int/comm/research/fp6/networks-ip.html

2024 © hobbydocbox.com Privacy Policy | Terms of Service | Feedback