CORDIS
EU research results

CORDIS

English EN
Policy and Security Configuration Management

Policy and Security Configuration Management

Objective

Future Internet (FI) applications will see dynamic compositions of services providing a broad diversity of functions, starting with business functionality down to infrastructure services. Their progress crucially depends on the service providers' ability to deal with two interdependent challenges: (1) to achieve, maintain and prove compliance with security requirements stemming from internal needs, 3rd party demands and international regulations and (2) to cost-efficiently manage policies and security configuration in operating conditions.The deficiencies of current processes and tools force service providers to trade off profitability against security and compliance. Major causes are (1) ignorance or manual resolution of policy and configuration dependencies, caused by distinct terminologies and languages of security domains, and the complexity of large-scale distributed systems, (2) constant evolution of requirements and regulations as well as service compositions and configurations, and (3) the number of stakeholders involved in security management and requirement definition.PoSecCo overcomes this by establishing a traceable and sustainable link between high-level requirements and low-level configuration settings. Operations will be supported by self-managed features and decision support systems. Substantial improvements are expected in the areas of policy modeling and conflict detection across architectural layers, decision support for policy refinement processes, policy and configuration change management including validation, remediation and audit support, and security management processes in FI application scenarios. PoSecCo addresses the economic viability of the chosen approach by assessing cost and organizational benefits of an improved policy and configuration management.PoSecCo continues other EC projects, especially DESEREC, POSITIF, and MASTER, and adopts existing industry-standards for change management and audit to ensure its impact.

Coordinator

SAP SE

Address

Dietmar Hopp Allee 16
69190 Walldorf

Germany

Activity type

Other

EU Contribution

€ 1 534 996

Administrative Contact

Henrik PLATE (Mr.)

Participants (11)

Sort alphabetically

Sort by EU Contribution

Expand all

UNIVERSITAET INNSBRUCK

Austria

EU Contribution

€ 862 815

BERNER FACHHOCHSCHULE

Switzerland

EU Contribution

€ 545 284

IBM RESEARCH GMBH

Switzerland

EU Contribution

€ 669 966

PLATTE CONSULT GMBH

Germany

EU Contribution

€ 133 394

CROSSGATE AG

Germany

EU Contribution

€ 89 325

ATOS SPAIN SA

Spain

EU Contribution

€ 537 859

DELOITTE CONSEIL SAS

France

EU Contribution

€ 460 124

THALES SERVICES SAS

France

EU Contribution

€ 484 292

UNIVERSITA' DEGLI STUDI DI BERGAMO

Italy

EU Contribution

€ 706 120

POLITECNICO DI TORINO

Italy

EU Contribution

€ 635 944

TECHNISCHE UNIVERSITEIT EINDHOVEN

Netherlands

EU Contribution

€ 339 868

Project information

Grant agreement ID: 257129

Status

Closed project

  • Start date

    1 October 2010

  • End date

    31 December 2013

Funded under:

FP7-ICT

  • Overall budget:

    € 11 272 386

  • EU contribution

    € 6 999 987

Coordinated by:

SAP SE

Germany