CRISP project: overview of findings and lessons learned.
Download as PPTX, PDF0 likes109 views
The CRISP project aimed to develop an innovative evaluation and certification methodology for security systems to enhance citizen trust and harmonize the European security industry. Key findings highlighted the need for a holistic approach to certification that respects fundamental rights and the complexities of societal contexts. Lessons learned emphasized the importance of stakeholder engagement and the complexity of standards development.
CRISP project: overview of findings and lessons learned.
- 1. CRISP Project Overview of findings and lessons learned Internal TRI Webinar Thordis Sveinsdottir
- 3. Starting point The EU security market: • Highly fragmented • Absence of common certification systems • Limited mechanism for mutual recognition of national certification • Slow introduction to new marked needs and solutions
- 4. Starting point Security systems often involve intensive data processing • potential breach of citizens freedoms. Absence of holistic approach to certification • socio-legal requirements that show respect for fundamental rights.
- 5. CRISP Mission The CRISP project mission was to develop an innovative evaluation and certification methodology for security systems: increase citizen trust in security technologies • through evaluating social impacts of security systems • certification of systems that comply with the protection of fundamental rights. more harmonized playing field for the European security industry, • acceptance of security certification across Europe – no need for re-certification in each country.
- 6. Embedding socio – legal requirements Approach Innovative Holistic STEFi dimensions Security Trust Efficiency Freedom infringement
- 7. Process Building blocks for certification scheme Developing STEFi methodology Understanding stakeholders needs Researching current landscape Glossary and taxonomy Stakeholder consultations CRISP Advisory Board Confidence enhancement DPA workshop Roundtable certification bodies Validation and Scenario-based workshops
- 8. The STEFi methodology Two main phases: evaluation and certification
- 9. Example evaluation questions STEFi
- 10. Building blocks for certification scheme
- 11. Key Deliverable - Standards document: CWA What is a CEN Workshop Agreement? Official standards document Agreement developed and approved in a CEN Workshop Open to the direct participation of all interested parties Fast and flexible development (average 1 year)
- 12. Standards document: CWA Scope of CWA Example in Annex: Installed video surveillance systems Challenge: to come to unambiguous procedures for a multi- dimensional evaluation that acknowledges the complexity of the societal context in which security systems operate.
- 13. Certification manual Provides basic information for the future owner of the CRISP certification scheme pictures the overall evaluation and certification methodology clarifications on roles and responsibilities of all parties involved information on (basic) requirements for evaluation and certification, including existing standards and legislation
- 14. Roadmap and implementation plan
- 15. CRISP project - successes Very engaged consortium – willing to give time to think through problems POs were interested in the project – helpful and flexible The expertise of the consortium was fitting the project – no gaps
- 16. Lessons learned Ambitious project; need to narrow the scope Certification and standardisation activities need broad support and engagement from stakeholders Standards development is an “exact science” – these activities need extra time CWA process can be long and complex – need to consider this when writing proposals
Editor's Notes
- #9: The methodology consists of two phases… Follows widely accepted approach to conformity assessment based on international standards (ISO/IEC 17000 series) Each phase has two or three stages Evaluation In the evaluation phase the STEFi approach is applied during the assessment stage, on the basis of assessment questions. The outcome of the evaluation is a report providing an overview of all criteria This report is the basis for the certification body in the certification phase Certification The certification phase comprises an assessment of the (report of the) evaluation phase and its results against applicable requirements. If assessment is positive certificate given provides assurance that the security system is in accordance with all applicable requirements, including the various stakeholder’s perspectives. For certification, it will be needed to have a clear description of the evaluation phase, the STEFi approach and assessment questions. No existing standards as this is a new development, so CRISP developed this standard.
- #11: More indept info on STEFi and content of CWA – workshop Learn more about standardisation and certification - workshop
- #12: There are different types of standards. The most appropriate type in this case is a CEN Workshop Agreement. Most attractive of CWA is relatively fast development (compared to EN standard = 3 years)
- #13: One of the key results is a CWA Scope of CWA: title The evaluation process is generic for security systems For the Annex to have an example for the evaluation questions and requirements, video-surveillance systems is taken as security system.
- #14: Next key result is the certifcation manual In addition to methodology and CWA, this document will say how the scheme should work The certification scheme is complementary to existing schemes and standards and not competing with them. Some items in Certification Manual: Scope Roles Procedure Crucial factors scheme
- #15: - Next building block: Roadmap until 2028 and implementation plan Estimation, but shows that a certification scheme is not ready tomorrow Will highlight the key steps