The European Dependability Initiative Deppy in the IST Programme

1
The European Dependability Initiative
(Deppy) in the IST Programme
by ANDREA SERVIDA EUROPEAN COMMISSION DGXIII
C/4 Rue de la Loi 200B-1049 BRUXELLESBELGIUM Te
lephone (32-2) 295.81.86Fax
(32-2)296.83.64 Internet andrea.servida_at_dg13.cec
.be
2
Outline

• OUTLINE
• Dependability what, where and why
• Dependability in the IT Programme
• Dependability in the IST Programme
• The European Dependability Initiative
• The AL on Dependability in the WP1999

3
What is dependability?

• Dependability subsumes the usual attributes of
  reliability, availability, safety and security.
• Dependability can be defined as
• the trustworthiness of a computer system such
  that reliance can justifiably be placed on the
  service it delivers1
• 1 A. Avizienis, H. Kopetz, J.C. Laprie (eds.)
  Dependability Concepts and Terminology,
  Springer-Verlag, 1993.

4
The Where of dependability?

• the precision of our watch or the correct and
  accurate actuation of cars ABS system or the
  long lasting functioning of a pace maker, etc. -
  (embedded systems)
• our TV set or the provision of LANs and/or WAN
  services, etc. - (distributed systems)
• the availability of telecommunication networks,
  the operation of credit card systems, etc. (large
  scale systems).
• any interaction with software based products,
  applications and systems.

5
Why is dependability important?

• We increasingly
• rely on software based systems for our leisure,
  health, work, movements and, in general, for any
  critical activity (diffusion of
  products/systems)
• casually and transparently interact with more and
  more complex and sophisticated systems and
  infrastructures (non standard pattern of use)
• make ourselves and our systems, products and
  devices interact, communicate, compose,
  co-operate, inter-work with other systems
  (emergent -systems)
• want to enjoy a predictable and dependable
  environment around us.

6
Trends - The safety concept

• In a world and economy that become digital, the
  perception of safety is changing to embrace
• preservation of digital asset
• survivability of digital infrastructures
• confidence and trustworthiness
• mass market image and business effectiveness

7
Trends - The diffusion of products

• software intensive systems populate our daily
  life (at home, at work, on the road, in the car,
  etc.)
• software intensive systems are deployed in highly
  interactive, open, uncertain and unpredictable
  environments
• distribution and de-localisation of systems,
  data, functions,
• increasing volume
• high variety of users and usage patterns
• unpredictability of the extended operating
  configurations

8
Trends - The product life-cycle

• life cycle of software intensive systems is
  becoming increasingly complex
• development and production processes are highly
  distributed, co-operative, heterogeneous and
  fragmented
• pressing market requirements on re-usability,
  re-configurability and re-deployment
• the integration and coupled use of standard and
  emerging technologies are a pressing need

9
Trends - Conclusions

• In building the IS, there are two emerging
  challenging areas for dependability
• Large scale infrastructures and services,
• business sectors retail, health care,
  financial services, KB manufacturing, etc.
• Extensively deployed and networked embedded
  systems,
• business sectors microelectronics, automotive,
  avionics, air traffic management, medical
  devices, etc.

10
Dependability in the IT Programme

• Safety critical systems
• EP20072 DEVA - to enrich the design paradigm to
  enable verifiability and availability.
• EP20897 SACRES - to develop a toolset that
  supports the integrated use of multiple
  formalisms for formally specifying, automatically
  producing and verifying distributed embedded
  systems.
• EP9032 CASCADE - provides a framework for the
  assessment and certification of safety critical
  systems.
• EP8649 REAIMS - developed a framework that
  supports good RE practice, viewpoint-oriented
  method for process analysis, reuse of knowledge
  and formal specification and proof.

11
Dependability in the IT Programme

• Security Trust
• EP22005 WIRE - to ease the deployment of Secure
  Enterprise Webs developing WebDCEs capability to
  support single mutual authentication corporate
  wide.
• EP20563 E2S- to develop and pilot end-to-end
  security mechanisms for electronic commerce
  transactions over Internet.
• EP25530 JEDI-FIRE- to develop a secure system for
  supporting high-speed electronic commerce
  applications.
• EP26810 MULTIPLEX-to develop technologies and
  business protocols for robust and scaleable
  secure business-to-business electronic commerce
  over Internet.

12
Dependability in the IST Programme

• Dependability is a major focus in the scenarios
  envisaged for the construction of the Information
  Society
• systems and services for citizen (i.e.
  availability and privacy issues)
• new methods of work and electronic trading (i.e.
  trust and confidence)
• mutimedia content (i.e. protection of assets)
• essential technologies and infrastructure (i.e.
  basic technologies)

13
The Dependability Initiative (Deppy) - The needs

• Between December 97 and March 98 four
  industrial Workshops, involving nearly 50
  organizations, were organized and held to
  discuss
• The driving forces shaping the dependability
  issues in the emerging IS
• The challenges faced by Industry and Society at
  large
• The vision, strategy and and concrete actions for
  a far reaching initiative on dependability in the
  5thFP Programme on IST.

14
Drivers - The business context

• Deregulation in telecom leads to new players,
  services and applications - blurring sector and
  jurisdictional boundaries
• The convergence of communication infrastructures
  boosts the deployment of unbounded network
  computing environments
• Information is an asset (from manufacturing-center
  ed to an information management model)
• Globalization of services, companies and
  integration of business process
• New threats and vulnerabilities.

15
Drivers - Technological

• From monolithic proprietary systems to open
  systems-of- systems with greater
  interconnectivity and complexity
• The pressure to produce cost effective systems
  places increasing reliance on COTS, reuse and the
  evolution of legacy systems
• Convergence is increasing the sophistication
  (e.g. multiple technologies) and the complexity
  of systems
• Rapid evolution of standards
• There is an urgent need to establish an
  interoperable infrastructure of trustworthy
  services.

16
Drivers - Societal Cultural

• The traditional chain of trust is affected by the
  blurring of geographical borders and boundaries
• The perception of benefits and risks related to
  IT application and Internet are diverse
• Mass market volume for embedded systems
  presupposes that
• users are not experts
• operating and environmental conditions vary
  hugely.

17
The Dependability Initiative - The goals

• Five goals of Deppy
• To foster a dependability-aware culture,
  leveraging on
• education in dependability that embraces
  multi-disciplinary approaches
• raising dependability awareness in society
• joining the somewhat separate technical
  communities dealing with safety, security,
  reliability and survivability, and promoting
  combined approaches to dependability
• promotion of and training in best practice.

18
The Dependability Initiative - The goals

• To provide a workable characterization of
  affordable dependability, focussing on
• Dependability frameworks
• Dependability characterization, especially to
  support certification
• Characterization of quality of information.

19
The Dependability Initiative - The goals

• To facilitate global interoperable trust
  frameworks, focussing on
• supporting mediation and negotiation along the
  chains of trust
• providing clear guidance on liability issues
• securing information sharing
• pursuing the harmonization of certification
  practice and standards for networked services.

20
The Dependability Initiative - The goals

• To provide the capability to master heterogeneous
  environments, addressing
• the use and integration of COTS/Legacy systems by
  appropriate and scalable means
• the establishment of global mechanisms available
  for rapid recovery strategies
• architectural models for systems composability
  and to support predictable design
• technical heterogeneity of systems and
  development processes as well as the evolutionary
  aspects of systems and the need to seamless
  support them.

21
The Dependability Initiative - The goals

• To provide capability to manage dependability in
  largely distributed environments, developing
• practice to construct adequately dependable
  systems from components with varying level of
  dependability
• united frameworks for modeling and validation
• cost-effective, application specific,
  fault-tolerant strategies for varying level of
  dependability
• business driven models to manage dependability in
  a risk management perspective relevant for the
  business environment.

22
The AL on Dependability in the WP1999

• V.1.2 CPA2Dependability in services and
  technologies
• developing technologies, methods and tools that
  will meet the emerging generic dependability
  requirements in the information society, stemming
  both from the ubiquity and volume of embedded and
  networked systems and services as well as from
  the global and complex nature of large-scale
  information and communication infrastructures,
  from citizens (especially with respect to
  enhancing privacy), administrations and business
  in terms of technologies (hardware and software),
  tools, systems, applications and services.

23
The AL on Dependability in the WP1999

• The work must reflect
• the wide scalability and heterogeneity of
  requirements and operating environments.
• The emphasis will be on
• risk and incident management tools as well as on
  privacy enhancing technologies. The scope
  includes self-monitoring, self-healing
  infrastructures and services.
• The scope include
• self-monitoring, self-healing infrastructures and
  services.

24
The AL on Dependability in the WP1999

• Main challenges to be tackled - (1)
• realising dependable and survivable information
  systems leveraging also on self-organising and
  self-diagnostic capabilities
• providing a workable characterisation of
  affordable dependability for emergent systems,
  applications, services and information
  infrastructures
• supporting the wide scalability of requirements
  and operating environments
• stimulating the development of protection
  technologies and facilitating the establishment
  of global interoperable trust infrastructures and
  frameworks

25
The AL on Dependability in the WP1999

• Main challenges to be tackled - (2)
• mastering the heterogeneity of technology and
  technical environments and user/application
  requirements
• managing dependability and risk in largely
  distributed and open systems-of-systems
  environments
• addressing dependability aspects throughout the
  IST programme to reflect its dynamic nature by
  continuously adapting to new challenges posed by
  applications, technology and by the changing
  policy frameworks at EU and Global level.

26
The AL on Dependability in the WP1999

• Scope nature of the activity within CPA2 - (1)
• Fundamental research activity, which would
  benefit from a European co-ordinated approach
  that would start from and leverage on the
  specific application contexts in which these
  challenges are to be met.
• Industrial research and piloting activity, which
  shall take into account industrial needs and
  develop workable and cost-effective solutions.
• Support Activity, which is connected with the
  research above is the need to support, build and
  leverage on its accomplishments.

27
The AL on Dependability in the WP1999

• Scope nature of the activity within CPA2 - (2)
• Fundamental research activity - main challenges
• The global and complex nature of large-scale
  information and service infrastructures,
• The ubiquity of embedded systems in diverse
  critical applications,
• The growing need to master composability of
  emergent and evolutionary systems,
• The wide scalability of requirements and
  operating environments,
• The prominent role of information as a critical
  asset for the competitiveness of business.

28
The AL on Dependability in the WP1999

• Scope nature of the activity within CPA2 - (3)
• The Industrial research and piloting activity
  shall take into account industrial needs and
  develop workable and cost-effective solutions by
  
• Identifying opportunities for the development of
  technology, in suitable application contexts with
  a particular attention to the new emerging ones
  (like electronic commerce)
• Identifying and resolving gaps and
  incompatibilities in their integration within
  current industrial processes.

29
The AL on Dependability in the WP1999

• Scope nature of the activity within CPA2 - (4)
• Support Activity would embrace
• International collaboration in specific areas
  where either joint RTD is required (e.g.
  survivability of information and services
  infrastructures, or disaster recovery technology,
  etc.) or the joint co-operation and discussion
  should be pursued (e.g. disaster recovery
  policy, standards, best practice, etc.).
• Best practice in specific areas (e.g. risk
  management) in all novel and emerging
  industrial/service domains. RD results and
  resources will be promoted taking advantage of
  Europes strong research strengths in the
  Dependability area in academia as well as in
  industry.

30
The AL on Dependability in the WP1999

• Links between CPA2 and the KAs - (1)
• The primary goal of CPA2 is to stimulate and
  promote specific activities, which would
  individually pertain to Key Actions, for which
  the application domain issues will be the driving
  and pulling factor for the technological
  developments.
• This goal will be attained by focussing, in

31
The AL on Dependability in the WP1999

• Links between CPA2 and the KAs - (2)
• KA1, on realising both reliability and safety of
  devices and systems, availability of critical
  service infrastructures (e.g Health - ALs I.2,
  Transport ALs I.6) as well as protecting
  security and privacy of users (e.g e.g Health -
  ALs I.2, Administration ALs I.4)
• KA2, on trust and confidence being realised by
  developing and validating i) mechanisms and
  structures for digital object transfer - II.4.3,
  ii) authentication architectures and protocols -
  II.4.1 and iii) components and services for
  non-cash payment - II.4.2

32
The AL on Dependability in the WP1999

• Links between CPA2 and the KAs - (3)
• KA3, on technologies for protection and
  preservation of intangible assets and digital
  contents (e.g Interactive Publishing ALs III.2),
  mainly securing the exploitation of IPR, or for
  protecting security and privacy of users (e.g.
  Information access and filtering ALs III.5)
• KA4, on basic technologies, tools, platforms and
  methods to support dependability management and
  information survivability for increasingly
  complex, heterogeneous and scaleable environments
  (e.g IV.2, IV.3, IV.5, IV.7 and IV.8).