Abstract image of a woman sitting on books and studying on a laptop

S.3.4 Security and Privacy

SUNSHINEProject, profile picture
SUNSHINEProject

The document discusses security and privacy strategies for the SUNSHINE project. It outlines plans to update documentation to address new attack models and standards. The project uses an identity management system with role, attribute, and consent-based access control based on XACML/SAML. Next steps include further testing the implementation, analyzing user data to define access rules, and developing new standards through partnerships.

Technology
1 of 17
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) D6.4 S3.4 Security and Privacy
www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Highlights • Publication of D1.3 now being updated from T1.6 Following on from T1.6 we’re re-viewing and revising D1.3 throughout the project Focus on what we’re doing and ensuring it works with SUNSHINE to counter risk, maximise privacy protection, comply to standards including the development of new standards and best practices • Architecture based on XACML/SAML with federated IdM • Result is rule based access control in a number of flavours: • Role Based Access Control • Attribute Based Access Control • Consent Based Access Control
www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Update of D1.3 Taken alongside developments in T4.8 Reviews newer attack models Heartbleed as an example Introduces metrics from MITRE, ISO and Common Criteria in developing products and services Considering use of STIX for incident reports
www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Identity management - generic
www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Access control – generic XACML
www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Identity and access management in SUNSHINE Implemented using WSO2 toolkit Identity Manager XACML policy engine SAML policy engine X509 certificate generator, verifier Multiple algorithms (RSA, ECC, etc.)
www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Sunshine’s XACML implementation
www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Sunshine’s XACML implementation
www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Sunshine’s XACML implementation PEP PAP/PDP User Directory
www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Principles involved Rule processing Attestation creation using signed attributes Attestation verification
www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161)
www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Process
www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Next steps #1 Testing of implementation Done by Sinergis SUNSHINE specific scripts Re-analysis of data and user model to assign rules for access Determine authority for each rule Distribute rules and collate policies More testing
www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Next steps #2 Creation of new work item in ETSI CYBER for Access Control scripting Extending rules for good XACML essentially Building towards introducing the cPP concept to GML through OGC Reviewing algorithms for asymmetric access control attestations in a quantum safe cryptographic world
www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Next steps #3 Working with OGC to tighten up geoXACML As part of smart city initiatives in OGC Preparing report on anonymisation Current anonymisation practices in SUNSHINE are adequate Concern is linkage and inference from other data sources (much more complex anti-privacy attack but concern has been raised in the EU)
www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Standards development goals • Developments with ETSI at smartM2M, ITS and CYBER TR 102 893 Risk analysis TVRA TS 103 097 Security data definitions TS 102 940 ITS security architecture & sec management TS 102 941 Trust & Privacy TS 102 942 Confidentiality TS 102 943 Access control All published and in revision/mai ntenance mode
www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Credits For more training material and courses visit http://www.sunshineproject.eu/solutions/training or contact us directly at training@sunshineproject.eu Source:www.unionegeometri.com Thank you! Scott CADZOW C3L

More Related Content

PDF
S.3.1 Introduction to Scenario 3
SUNSHINEProject
 
PDF
S 2.1 Introduction to Scenario 2
SUNSHINEProject
 
PDF
S.1.5 Map4Data App
SUNSHINEProject
 
PDF
S.2.f Specifications for Data Ingestion via Green Button
SUNSHINEProject
 
PDF
S.3.k Security Layer
SUNSHINEProject
 
PDF
S.1.4 Model for Energy Map Calculation
SUNSHINEProject
 
PDF
S.2.h Meter Data Management Service
SUNSHINEProject
 
PDF
S.1.1 Introduction to Scenario 1
SUNSHINEProject
 
S.3.1 Introduction to Scenario 3
SUNSHINEProject
 
S 2.1 Introduction to Scenario 2
SUNSHINEProject
 
S.1.5 Map4Data App
SUNSHINEProject
 
S.2.f Specifications for Data Ingestion via Green Button
SUNSHINEProject
 
S.3.k Security Layer
SUNSHINEProject
 
S.1.4 Model for Energy Map Calculation
SUNSHINEProject
 
S.2.h Meter Data Management Service
SUNSHINEProject
 
S.1.1 Introduction to Scenario 1
SUNSHINEProject
 

What's hot (20)

PDF
S.2.i Suggestion Service
SUNSHINEProject
 
PDF
S.3.l Lamp Control Service
SUNSHINEProject
 
PDF
S.2.g Meter and Sensor Data Management Service
SUNSHINEProject
 
PDF
S.1.c Building Energy Performance Estimation
SUNSHINEProject
 
PDF
Servizio Gestione Flussi Dati Energetici Edifici
SUNSHINEProject
 
PDF
S.1.3 INSPIRE Directive
SUNSHINEProject
 
PDF
S.1.b Building Energy Pre Certification Service
SUNSHINEProject
 
PDF
SUNSHINE Project: Romain Nouvel, Jean Marie Bahu
SUNSHINEProject
 
PPT
Energy efficiency in buildings
ArrowheadProject
 
PPTX
Álvaro Sicilia, ARC Engineering and Architecture La Salle, Barcelona, Spain.
ARC research group
 
PDF
Assisting Energy Management in Smart Buildings and Microgrids
Andrea Monacchi
 
PPTX
Leandro Madrazo, ARC Engineering and Architecture La Salle, Barcelona, Spain.
ARC research group
 
PPTX
Benjamín González, CYPE Ingenieros, S.A., Alicante, Spain.
ARC research group
 
PPTX
Aitor Elorriaga, Institut für Angewandte Systemtechnik Bremen, Germany.
ARC research group
 
PPTX
Gašper Stegnar, Jožef Stefan Institute, Ljubljana, Slovenia.
ARC research group
 
PDF
Ijariie1172
IJARIIE JOURNAL
 
PPTX
Niagara Dashboard Application
controlconsultantsinc
 
PPTX
Leandro Madrazo, ARC Engineering and Architecture La Salle, Barcelona, Spain.
ARC research group
 
PPTX
Gonçal Costa, ARC Engineering and Architecture La Salle, Barcelona, Spain.
ARC research group
 
PDF
Deimos energy suite eng
Vicente Muelas Sanz de Andino
 
S.2.i Suggestion Service
SUNSHINEProject
 
S.3.l Lamp Control Service
SUNSHINEProject
 
S.2.g Meter and Sensor Data Management Service
SUNSHINEProject
 
S.1.c Building Energy Performance Estimation
SUNSHINEProject
 
Servizio Gestione Flussi Dati Energetici Edifici
SUNSHINEProject
 
S.1.3 INSPIRE Directive
SUNSHINEProject
 
S.1.b Building Energy Pre Certification Service
SUNSHINEProject
 
SUNSHINE Project: Romain Nouvel, Jean Marie Bahu
SUNSHINEProject
 
Energy efficiency in buildings
ArrowheadProject
 
Álvaro Sicilia, ARC Engineering and Architecture La Salle, Barcelona, Spain.
ARC research group
 
Assisting Energy Management in Smart Buildings and Microgrids
Andrea Monacchi
 
Leandro Madrazo, ARC Engineering and Architecture La Salle, Barcelona, Spain.
ARC research group
 
Benjamín González, CYPE Ingenieros, S.A., Alicante, Spain.
ARC research group
 
Aitor Elorriaga, Institut für Angewandte Systemtechnik Bremen, Germany.
ARC research group
 
Gašper Stegnar, Jožef Stefan Institute, Ljubljana, Slovenia.
ARC research group
 
Ijariie1172
IJARIIE JOURNAL
 
Niagara Dashboard Application
controlconsultantsinc
 
Leandro Madrazo, ARC Engineering and Architecture La Salle, Barcelona, Spain.
ARC research group
 
Gonçal Costa, ARC Engineering and Architecture La Salle, Barcelona, Spain.
ARC research group
 
Deimos energy suite eng
Vicente Muelas Sanz de Andino
 
Ad

Similar to S.3.4 Security and Privacy (20)

PDF
Taking the fire drill out of making firewall changes
AlgoSec
 
PDF
Demystifying Control Towers: What Drives Effectiveness?
Aggregage
 
PPTX
Cisco Firepower Migration | Cisco and AlgoSec Joint Webinar
AlgoSec
 
PPT
Addressing the challenge of energy efficiency through ICT
Firas Obeido
 
PPTX
Cisco ACI & Hybrid Networks - Breaking Down Silos with Central Policy Management
AlgoSec
 
PDF
Security Assessment (SECA)_English_PDF.pdf
Q-Advise
 
PDF
Leverage IoT to Setup Smart Manufacturing Solutions
Softweb Solutions
 
PPTX
Microsoft Power & Utilities POV
Jon Arnold
 
PDF
Cybersecurity for Smart Grids: Technical Approaches to Provide Cybersecurity
Leonardo ENERGY
 
PDF
SolarWinds.pdf
verbosenano
 
PPTX
IREC part 02
RCREEE
 
PPTX
DigitalClone Live Product Update
Sentient Science
 
PDF
Pres Final Taube ConnWeek 2012
Bert Taube
 
PPTX
Mastering Surveying Efficiency: Tips and Tricks with Nikon Total Station Online
Falcon Geomatics LLC
 
PDF
Best Practices for Network Security Management
Skybox Security
 
PDF
GDPR Compliance Countdown - Is your Application environment ready?
QualiQuali
 
PPT
TAC by Schneider Electric Corporate Presentation
osumattox
 
PDF
redhat-IoT_use_cases-DavidBericat
David Bericat
 
PPTX
Cisco Enterprise Cloud Suite for Service Providers
Anil Punjabi
 
PPTX
A3 cloud computing
Pooja Punjabi
 
Taking the fire drill out of making firewall changes
AlgoSec
 
Demystifying Control Towers: What Drives Effectiveness?
Aggregage
 
Cisco Firepower Migration | Cisco and AlgoSec Joint Webinar
AlgoSec
 
Addressing the challenge of energy efficiency through ICT
Firas Obeido
 
Cisco ACI & Hybrid Networks - Breaking Down Silos with Central Policy Management
AlgoSec
 
Security Assessment (SECA)_English_PDF.pdf
Q-Advise
 
Leverage IoT to Setup Smart Manufacturing Solutions
Softweb Solutions
 
Microsoft Power & Utilities POV
Jon Arnold
 
Cybersecurity for Smart Grids: Technical Approaches to Provide Cybersecurity
Leonardo ENERGY
 
SolarWinds.pdf
verbosenano
 
IREC part 02
RCREEE
 
DigitalClone Live Product Update
Sentient Science
 
Pres Final Taube ConnWeek 2012
Bert Taube
 
Mastering Surveying Efficiency: Tips and Tricks with Nikon Total Station Online
Falcon Geomatics LLC
 
Best Practices for Network Security Management
Skybox Security
 
GDPR Compliance Countdown - Is your Application environment ready?
QualiQuali
 
TAC by Schneider Electric Corporate Presentation
osumattox
 
redhat-IoT_use_cases-DavidBericat
David Bericat
 
Cisco Enterprise Cloud Suite for Service Providers
Anil Punjabi
 
A3 cloud computing
Pooja Punjabi
 
Ad

More from SUNSHINEProject (11)

PDF
Sunshine lamia greek native language
SUNSHINEProject
 
PDF
S.2.e Specifications for Data Ingestion via Sunshine FTP
SUNSHINEProject
 
PDF
SUNSHINE Project: Francesco Pignatelli, Maria Teresa Borzacchiello
SUNSHINEProject
 
PDF
SUNSHINE Project: Bart delathouwer
SUNSHINEProject
 
PDF
SUNSHINE Project: Paolo Conci
SUNSHINEProject
 
PDF
Sunshine Project: Energy Maps Trenta
SUNSHINEProject
 
PDF
S.1.a Data Model for Energy Map Data Collection
SUNSHINEProject
 
PDF
S.2.4 Validation Activities for Scenario 2 (case Ferrara)
SUNSHINEProject
 
PDF
S.1.2 Data Model for Energy Maps
SUNSHINEProject
 
PDF
SUNSHINE Project - Scenario 2 (HR)
SUNSHINEProject
 
PDF
SUNSHINE Project - Map4data App (IT)
SUNSHINEProject
 
Sunshine lamia greek native language
SUNSHINEProject
 
S.2.e Specifications for Data Ingestion via Sunshine FTP
SUNSHINEProject
 
SUNSHINE Project: Francesco Pignatelli, Maria Teresa Borzacchiello
SUNSHINEProject
 
SUNSHINE Project: Bart delathouwer
SUNSHINEProject
 
SUNSHINE Project: Paolo Conci
SUNSHINEProject
 
Sunshine Project: Energy Maps Trenta
SUNSHINEProject
 
S.1.a Data Model for Energy Map Data Collection
SUNSHINEProject
 
S.2.4 Validation Activities for Scenario 2 (case Ferrara)
SUNSHINEProject
 
S.1.2 Data Model for Energy Maps
SUNSHINEProject
 
SUNSHINE Project - Scenario 2 (HR)
SUNSHINEProject
 
SUNSHINE Project - Map4data App (IT)
SUNSHINEProject
 

Recently uploaded (20)

PDF
Convolutional neural network based encoder-decoder for efficient real-time ob...
IAESIJAI
 
PDF
CloudStack 4.21: First Look Webinar slides
ShapeBlue
 
PDF
Developing a website for English-speaking practice to English as a foreign la...
IAESIJAI
 
PDF
ENT215_Completing-a-large-scale-migration-and-modernization-with-AWS.pdf
ssuser28425f
 
PDF
How ambidextrous entrepreneurial leaders react to the artificial intelligence...
IAESIJAI
 
PDF
Comparative analysis of machine learning models for fake news detection in so...
IAESIJAI
 
PDF
Produktkatalog für HOBO Datenlogger, Wetterstationen, Sensoren, Software und ...
Metrics GmbH
 
PDF
The influence of sentiment analysis in enhancing early warning system model f...
IAESIJAI
 
PPT
What is a Computer? Input Devices /output devices
GulJan8
 
PPT
Galois Field Theory of Risk: A Perspective, Protocol, and Mathematical Backgr...
Melanie Swan
 
PPTX
MicrosoftCybserSecurityReferenceArchitecture-April-2025.pptx
SilvioHayashi
 
PDF
OpenACC and Open Hackathons Monthly Highlights July 2025
OpenACC
 
PPTX
Final SEM Unit 1 for mit wpu at pune .pptx
anishtilekar08
 
PPTX
Build Your First AI Agent with UiPath.pptx
suhanisingh58689
 
PPTX
The various Industrial Revolutions .pptx
bandileshozi3
 
PDF
Hybrid horned lizard optimization algorithm-aquila optimizer for DC motor
IAESIJAI
 
DOCX
search engine optimization ppt fir known well about this
StandardCodeLearning
 
PPTX
Chapter 5: Probability Theory and Statistics
RandyFin
 
PDF
UiPath Agentic Automation session 1: RPA to Agents
suhanisingh58689
 
PPTX
Custom Battery Pack Design Considerations for Performance and Safety
Epec Engineered Technologies
 
Convolutional neural network based encoder-decoder for efficient real-time ob...
IAESIJAI
 
CloudStack 4.21: First Look Webinar slides
ShapeBlue
 
Developing a website for English-speaking practice to English as a foreign la...
IAESIJAI
 
ENT215_Completing-a-large-scale-migration-and-modernization-with-AWS.pdf
ssuser28425f
 
How ambidextrous entrepreneurial leaders react to the artificial intelligence...
IAESIJAI
 
Comparative analysis of machine learning models for fake news detection in so...
IAESIJAI
 
Produktkatalog für HOBO Datenlogger, Wetterstationen, Sensoren, Software und ...
Metrics GmbH
 
The influence of sentiment analysis in enhancing early warning system model f...
IAESIJAI
 
What is a Computer? Input Devices /output devices
GulJan8
 
Galois Field Theory of Risk: A Perspective, Protocol, and Mathematical Backgr...
Melanie Swan
 
MicrosoftCybserSecurityReferenceArchitecture-April-2025.pptx
SilvioHayashi
 
OpenACC and Open Hackathons Monthly Highlights July 2025
OpenACC
 
Final SEM Unit 1 for mit wpu at pune .pptx
anishtilekar08
 
Build Your First AI Agent with UiPath.pptx
suhanisingh58689
 
The various Industrial Revolutions .pptx
bandileshozi3
 
Hybrid horned lizard optimization algorithm-aquila optimizer for DC motor
IAESIJAI
 
search engine optimization ppt fir known well about this
StandardCodeLearning
 
Chapter 5: Probability Theory and Statistics
RandyFin
 
UiPath Agentic Automation session 1: RPA to Agents
suhanisingh58689
 
Custom Battery Pack Design Considerations for Performance and Safety
Epec Engineered Technologies
 

S.3.4 Security and Privacy

  • 1. www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) D6.4 S3.4 Security and Privacy
  • 2. www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Highlights • Publication of D1.3 now being updated from T1.6 Following on from T1.6 we’re re-viewing and revising D1.3 throughout the project Focus on what we’re doing and ensuring it works with SUNSHINE to counter risk, maximise privacy protection, comply to standards including the development of new standards and best practices • Architecture based on XACML/SAML with federated IdM • Result is rule based access control in a number of flavours: • Role Based Access Control • Attribute Based Access Control • Consent Based Access Control
  • 3. www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Update of D1.3 Taken alongside developments in T4.8 Reviews newer attack models Heartbleed as an example Introduces metrics from MITRE, ISO and Common Criteria in developing products and services Considering use of STIX for incident reports
  • 4. www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Identity management - generic
  • 5. www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Access control – generic XACML
  • 6. www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Identity and access management in SUNSHINE Implemented using WSO2 toolkit Identity Manager XACML policy engine SAML policy engine X509 certificate generator, verifier Multiple algorithms (RSA, ECC, etc.)
  • 7. www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Sunshine’s XACML implementation
  • 8. www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Sunshine’s XACML implementation
  • 9. www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Sunshine’s XACML implementation PEP PAP/PDP User Directory
  • 10. www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Principles involved Rule processing Attestation creation using signed attributes Attestation verification
  • 11. www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161)
  • 12. www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Process
  • 13. www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Next steps #1 Testing of implementation Done by Sinergis SUNSHINE specific scripts Re-analysis of data and user model to assign rules for access Determine authority for each rule Distribute rules and collate policies More testing
  • 14. www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Next steps #2 Creation of new work item in ETSI CYBER for Access Control scripting Extending rules for good XACML essentially Building towards introducing the cPP concept to GML through OGC Reviewing algorithms for asymmetric access control attestations in a quantum safe cryptographic world
  • 15. www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Next steps #3 Working with OGC to tighten up geoXACML As part of smart city initiatives in OGC Preparing report on anonymisation Current anonymisation practices in SUNSHINE are adequate Concern is linkage and inference from other data sources (much more complex anti-privacy attack but concern has been raised in the EU)
  • 16. www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Standards development goals • Developments with ETSI at smartM2M, ITS and CYBER TR 102 893 Risk analysis TVRA TS 103 097 Security data definitions TS 102 940 ITS security architecture & sec management TS 102 941 Trust & Privacy TS 102 942 Confidentiality TS 102 943 Access control All published and in revision/mai ntenance mode
  • 17. www.sunshineproject.eu SUNSHINE - Smart UrbaN ServIces for Higher eNergy Efficiency (GA no: 325161) Credits For more training material and courses visit http://www.sunshineproject.eu/solutions/training or contact us directly at training@sunshineproject.eu Source:www.unionegeometri.com Thank you! Scott CADZOW C3L