IG1195 ODA Model-Driven Security & Privacy Framework v1.0.0

This introductory guide establishes a methodology to enable the mapping of security, privacy, integrity and trust requirements to an ODA component, environment and data handled. It is to foster the embedding of Secure-by-design, Privacy-Assurance as core tenets of ODA implementation. Security and Privacy, which is a main concern in this guide, has usually been deferred to platform level solutions, e.g. by configuring roles. While this can sometimes meet near-sighted needs, it is not sufficient, can lead to high complexity in security policies implementation, and impair enforcement. The non-functional impact of this approach has the tendency of inhibiting performance, and breaking reusability of components.

General Information

Document series: IG1195
Document version: 1.0.0
Status: Member Evaluated
Document type: Exploratory Report
Team approved: 02-Oct-2020
IPR mode: RAND
Date modified: 02-Nov-2020
ODF Technical: Security Governance