Layered identity infrastructure model for identity meta systems

There are several Identity Meta Systems emerging in the identity management field, such as CardSpace and Higgins Trust Framework. The goal of an Identity Meta System (IMetS) is to integrate existing or new Identity Management System (IMS) to provide users with seamless interoperability and a consistent user experience. IMetS is a complex system that tries to integrate the already complicated IMS services. With such a complex system, we need a way to assess IMetS in order to determine how well an IMetS integrates the various IMS services. However, as IMetS is a rela- tively new concept, there is no framework to identify the properties that an ideal IMetS should have. The contribution of this paper is to introduce the Layered Identity Infrastructure Model (LIIM) that can be used as a framework to assess IMetS. In addition, the LIIM framework can also be used to identify the missing components of an IMetS, to guide and improve the design of an existing IMetS, to serve as a design benchmark for a new IMetS, as well as to aid the understanding of a complicated IMetS

Secure data sharing and processing in heterogeneous clouds

The extensive cloud adoption among the European Public Sector Players empowered them to own and operate a range of cloud infrastructures. These deployments vary both in the size and capabilities, as well as in the range of employed technologies and processes. The public sector, however, lacks the necessary technology to enable effective, interoperable and secure integration of a multitude of its computing clouds and services. In this work we focus on the federation of private clouds and the approaches that enable secure data sharing and processing among the collaborating infrastructures and services of public entities. We investigate the aspects of access control, data and security policy languages, as well as cryptographic approaches that enable fine-grained security and data processing in semi-trusted environments. We identify the main challenges and frame the future work that serve as an enabler of interoperability among heterogeneous infrastructures and services. Our goal is to enable both security and legal conformance as well as to facilitate transparency, privacy and effectivity of private cloud federations for the public sector needs. © 2015 The Authors

Digitalization and Innovation

Developments in digital technology offer new opportunities to design new products and services. However, creating such digitalized products and services often creates new problems and challenges to firms that are trying to innovate. In this essay, we analyze the impact of digitalization of products and services on innovations. In particular, we argue that digitalization of products will lead to an emergence of new layered product architecture. The layered architecture is characterized by its generative design rules that connect loosely coupled heterogeneous layers. It is pregnant with the potential of unbounded innovations. The new product architecture will require organizations to adopt a new organizing logic of innovation that we dubbed as doubly distributed innovation network. Based on this analysis, we propose five key issues that future researchers need to explore.innovation, innovation, product architecture, design rules

CyberGuarder: a virtualization security assurance architecture for green cloud computing

Cloud Computing, Green Computing, Virtualization, Virtual Security Appliance, Security Isolation

Open Government Architecture: The evolution of De Jure Standards, Consortium Standards, and Open Source Software

Conducted for the Treasury Board of Québec, this study seeks to present recent contributions to the evolution, within an enterprise architecture context, of de jure and de facto standards by various actors in the milieu, industrial consortia, and international standardization committees active in open source software. In order to be able to achieve its goals of delivering services to citizens and society, the Government of Québec must integrate its computer systems to create a service oriented open architecture. Following in the footsteps of various other governments and the European Community, such an integration will require elaboration of an interoperability framework, i.e. a structured set of de jure standards, de facto standards, specifications, and policies allowing computer systems to interoperate. Thus, we recommend that the Government of Québec: Pursue its endeavours to elaborate an interoperability framework for its computer systems that is based on open de jure and de facto standards. This framework should not only reflect the criteria enumerated in this study and apply to internal computer systems, but it should also extend to Web services supplied to organizations outside of the government. This framework should explicitly prioritize open source de jure and de facto standards and include a policy covering free software. The interoperability framework should initially draw on that of the state of Massachusetts. In the medium term, is should be as comprehensive as that of the British government. Integrate this interoperability framework into its enterprise architecture. Publish this interoperability framework with its enterprise architecture. Specify this interoperability framework in its calls for tenders. Elaborate a policy of compliance with this framework for all new applications.