This blog has been focusing, for a while, on aspects related to research on Security and Identity and Access Management (IAM).
In the meanwhile, my R&D activities have evolved consistently with HP Labs R&D research directions and priorities. It is time to reflect these changes also in my Blog.
This blog will now pay more attention to topics related to Research in the space of Security and Innovation in the Cloud Computing areas.
I n some way this has been anticipated in this blog by various posts (I submitted in the past months), discussing key aspects in the following areas:
· HP Security Analytics, applied to a variety of fields (beyond IAM), including Incident Management and Remediation, to provide strategic risk assessment and decision support;
· Innovation in the space of Situational Awareness, inclusive of new issues (and opportunities) due to the wider adoption of services in the Cloud and the consequent loss of control;
· Exploitation of new HP SW capabilities, such as HP ArcSight and TippingPoint in the above areas;
· Research and development in the space of consent and privacy management, including the work done by HP Labs in EnCoRe in providing a fully working Service Framework to support those capabilities;
· Innovation in the space of Cloud Computing , their management and related processes & information, inclusive of accountability management (e.g. via sticky policies), situational awareness, next generation SOC centres, etc.
· ...
Of course Identity and Access Management still plays a key role in all these areas: I am sure that some of my future blog posts will still discuss IAM aspects and related cool R&D work that we do at HP Labs.
--- Posted by Marco Casassa Mont (here and here) ---
--- NOTE: use this mirror blog if you prefer posting on an external blog site ---
--- NOTE: my original HP blog can be found here ---
Friday, December 2, 2011
On Dynamic Consent and Privacy Management: EnCoRe Third Architectural Document Available Online
The EnCoRe Third Technical Architecture is now available online.
This document now provides a fine grained description of a technical approach to deal with the management of dynamic consent and privacy within organisations and in distributed scenarios (e.g. the cloud and supply-chains).
Specifically, the document uses the EnCoRe third case study (focusing on the UK Cabinet Office/Identity Assurance Programme) to illustrate use cases and capabilities in a distributed environment, involving multiple Service Providers, Identity Providers, and Attribute Providers via Federated Identity Management.
HP Labs have implemented a fully working Service Framework - technology and demonstrator - supporting all the capabilities discussed in the architectural document. The demonstrator shows how dynamic consent and privacy management can be effectively deployed in a context such as the IDA Federated scenario.
We are keen in exploring potential technological trials, jointly with our HP business groups. Please contact me for more information.
--- Posted by Marco Casassa Mont (here and here) ---
--- NOTE: use this mirror blog if you prefer posting on an external blog site ---
--- NOTE: my original HP blog can be found here ---
This document now provides a fine grained description of a technical approach to deal with the management of dynamic consent and privacy within organisations and in distributed scenarios (e.g. the cloud and supply-chains).
Specifically, the document uses the EnCoRe third case study (focusing on the UK Cabinet Office/Identity Assurance Programme) to illustrate use cases and capabilities in a distributed environment, involving multiple Service Providers, Identity Providers, and Attribute Providers via Federated Identity Management.
HP Labs have implemented a fully working Service Framework - technology and demonstrator - supporting all the capabilities discussed in the architectural document. The demonstrator shows how dynamic consent and privacy management can be effectively deployed in a context such as the IDA Federated scenario.
We are keen in exploring potential technological trials, jointly with our HP business groups. Please contact me for more information.
--- Posted by Marco Casassa Mont (here and here) ---
--- NOTE: use this mirror blog if you prefer posting on an external blog site ---
--- NOTE: my original HP blog can be found here ---
Next Generation Situational Awareness and Information Sharing
I am particularly interested in innovating in the space of Situational Awareness and Information Sharing.
These areas are getting more and more relevant within organisations, beyond the traditional military and government contexts.
Situational Awareness is usually related to the process of collecting and processing large amount of information to understand risks, threats and issues and enable decision support.
I believe there are great innovation opportunities in this space, including:
· Leveraging longer-term risk assessment, what-if analysis and decision support capabilities, such as the ones provided by Security Analytics
· Leveraging Cloud computing and related services for the provisioning and management of situational awareness capabilities
· Innovation in the information flow management, involved in situational awareness scenarios, by using advance policy and context based techniques
· Leveraging assets such as HP ArcSight, HP TippingPoint and Autonomy in this space
· Designing SOC 2.0, the next generation of Security Operations Centers for Incident Management and Remediation to adapt to new emerging scenarios and technologies
· Intelligent detections of threats and risks and reactions (e.g. via dynamic playbooks)
More to come.
--- Posted by Marco Casassa Mont (here and here) ---
--- NOTE: use this mirror blog if you prefer posting on an external blog site ---
--- NOTE: my original HP blog can be found here ---
These areas are getting more and more relevant within organisations, beyond the traditional military and government contexts.
Situational Awareness is usually related to the process of collecting and processing large amount of information to understand risks, threats and issues and enable decision support.
I believe there are great innovation opportunities in this space, including:
· Leveraging longer-term risk assessment, what-if analysis and decision support capabilities, such as the ones provided by Security Analytics
· Leveraging Cloud computing and related services for the provisioning and management of situational awareness capabilities
· Innovation in the information flow management, involved in situational awareness scenarios, by using advance policy and context based techniques
· Leveraging assets such as HP ArcSight, HP TippingPoint and Autonomy in this space
· Designing SOC 2.0, the next generation of Security Operations Centers for Incident Management and Remediation to adapt to new emerging scenarios and technologies
· Intelligent detections of threats and risks and reactions (e.g. via dynamic playbooks)
More to come.
--- Posted by Marco Casassa Mont (here and here) ---
--- NOTE: use this mirror blog if you prefer posting on an external blog site ---
--- NOTE: my original HP blog can be found here ---
On Incident Management, Security Analytics and the Cloud
In previous posts of mine I discussed the fact that HP Labs have developed an approach and capabilities to assess the risks associated to organisations’ Incident Management and Remediation processes. These capabilities, centred on HP Security Analytics, enable decision makers not only to assess the performance and security risks associated to current processes but also to explore potential what-if scenarios (e.g. changes of SLAs, changes of processes/resources, changes of threat environments) and identify suitable investments.
These capabilities are now offered as a service by HP Security Business (HP ESS).
I am interested in exploring the implications of doing this in emerging scenarios involving organisations that increasingly rely on outsourcing, supply-chains and the Cloud. What are the implications in terms of Incident Management and Response? How to effectively enable Information Sharing? How to enable accountability among the involved parties?
There is an opportunity in designing and building the next generation of Security Analytics and Risk Management services that can scale and cope with these emerging scenarios. More to come.
In the meanwhile, I am looking for additional requirements and use cases in the above space. Please contact me if you are interested in engaging in this area.
--- Posted by Marco Casassa Mont (here and here) ---
--- NOTE: use this mirror blog if you prefer posting on an external blog site ---
--- NOTE: my original HP blog can be found here ---
These capabilities are now offered as a service by HP Security Business (HP ESS).
I am interested in exploring the implications of doing this in emerging scenarios involving organisations that increasingly rely on outsourcing, supply-chains and the Cloud. What are the implications in terms of Incident Management and Response? How to effectively enable Information Sharing? How to enable accountability among the involved parties?
There is an opportunity in designing and building the next generation of Security Analytics and Risk Management services that can scale and cope with these emerging scenarios. More to come.
In the meanwhile, I am looking for additional requirements and use cases in the above space. Please contact me if you are interested in engaging in this area.
--- Posted by Marco Casassa Mont (here and here) ---
--- NOTE: use this mirror blog if you prefer posting on an external blog site ---
--- NOTE: my original HP blog can be found here ---
HP Labs Innovation Research Programme - 2012
The HP Labs Innovation Research Programme (IRP) for 2012 has now been announced. The IRP 2012 Program Guidelines will be published soon.
I’ll provide updates, in particular for IRP topics of relevance to the Cloud & Security Lab (CSL).
--- Posted by Marco Casassa Mont (here and here) ---
--- NOTE: use this mirror blog if you prefer posting on an external blog site ---
--- NOTE: my original HP blog can be found here ---
I’ll provide updates, in particular for IRP topics of relevance to the Cloud & Security Lab (CSL).
--- Posted by Marco Casassa Mont (here and here) ---
--- NOTE: use this mirror blog if you prefer posting on an external blog site ---
--- NOTE: my original HP blog can be found here ---
Subscribe to:
Posts (Atom)