Are you IDS_ready?

Fraunhofer FOKUS and AISEC help companies get ready for IDS component certification

In their blog post, Nad­ja Menz from Fraun­ho­fer FOKUS, Moni­ka Huber and Sascha Wes­sel from Fraun­ho­fer AISEC ans­wer the ques­ti­on why we need trust­worthy IDS con­nec­tors and illus­tra­te the road­map for IDS-rea­di­ness.

The cen­tral goal of the IDS (Inter­na­tio­nal Data Spaces) Initia­ti­ve is the sov­er­eign exchan­ge of data without losing con­trol over their usa­ge. This is achie­ved by using spe­cia­li­zed IDS con­nec­tors that can enfor­ce data usa­ge con­trol poli­ci­es. Spe­ci­fy­ing such poli­ci­es for their data allows the data pro­vi­ders to limit, for examp­le, who may use it in which way. The basis for the suc­cess of the IDS is having trust­worthy con­nec­tors which ensu­re data secu­ri­ty and veri­fia­b­ly enfor­ce usa­ge con­trol. The cor­rect imple­men­ta­ti­on of the­se con­nec­tors is ensu­red by having a trans­pa­rent and trust­worthy eva­lua­ti­on and cer­ti­fi­ca­ti­on pro­cess.

The Working Group Cer­ti­fi­ca­ti­on of the IDSA has deve­lo­ped the IDS Cer­ti­fi­ca­ti­on Sche­me which defi­nes the three dif­fe­rent secu­ri­ty levels for com­pon­ents and the requi­re­ments to be imple­men­ted for each level. The­se requi­re­ments have alrea­dy been fina­li­zed for con­nec­tors, while the cri­te­ria for other com­pon­ents such as Bro­ker or Clea­ring House will fol­low short­ly.

The Fraun­ho­fer Insti­tu­tes FOKUS and AISEC offer a work­shop to con­duct an IDS-Rea­dy eva­lua­ti­on in order to sup­port com­pa­nies in pre­pa­ring for the cer­ti­fi­ca­ti­on of their con­nec­tors. It is plan­ned that the cer­ti­fi­ca­ti­on will beco­me avail­ab­le at the end of 2020. This lea­ves ple­nty of time for com­pa­nies to have their pro­ducts pre-eva­lua­ted through IDS-Rea­dy.

 

Road­map for IDS-Rea­di­ness

The 3- to 5‑day work­shop »IDS Com­po­nent Cer­ti­fi­ca­ti­on« addres­ses com­pa­nies which deve­lop their own com­pon­ents such as con­nec­tors and want them to beco­me cer­ti­fied for usa­ge in the IDS. In this work­shop the par­ti­ci­pants learn what is requi­red for a suc­cess­ful cer­ti­fi­ca­ti­on and par­ti­ci­pa­ti­on in the IDS and match this with the cur­rent deve­lo­p­ment sta­tus of their pro­duct.

The work­shop starts with a pre­sen­ta­ti­on of the IDS Cer­ti­fi­ca­ti­on Sche­me and the asso­cia­ted cri­te­ria cata­log. Based on that, the focus of the work­shop lies on eva­lua­ting the company's con­nec­tor with respect to the­se cri­te­ria and its rea­di­ness for the IDS.

The result of the work­shop is an assess­ment whe­ther the exis­ting imple­men­ta­ti­on con­cept for the con­nec­tor is alrea­dy suf­fi­ci­ent for awar­ding the IDS-Rea­dy label. Addi­tio­nal­ly, a con­cre­te road­map with the remai­ning steps towards the IDS cer­ti­fi­ca­ti­on is ela­bo­ra­ted in col­la­bo­ra­ti­on bet­ween Fraun­ho­fer and the com­pa­ny. It inclu­des an over­view of the requi­red func­tio­n­a­li­ties and secu­ri­ty pro­per­ties that are alrea­dy imple­men­ted ver­sus the are­as that still requi­re tou­ch­ing up.

Par­ti­ci­pants of the work­shop learn to assess efforts and bene­fits of an IDS cer­ti­fi­ca­ti­on as well as the cer­ti­fia­bi­li­ty of their pro­duct. Ther­eby they estab­lish the basis for a suc­cess­ful IDS cer­ti­fi­ca­ti­on of their com­po­nent. The pre­pa­red road­map hel­ps them imple­ment any still mis­sing (secu­ri­ty) func­tio­n­a­li­ty in the pro­duct.

For fur­ther details con­cer­ning the work­shop »IDS Com­po­nent Cer­ti­fi­ca­ti­on« plea­se con­ta­ct Nad­ja Menz (Fraun­ho­fer FOKUS) or Sascha Wes­sel (Fraun­ho­fer AISEC).