Skip to main content

Security Framework

Definition: Security Framework ABB is a Business Object that enables the protection of various aspects of data, information and knowledge assets and the organizational resources handling them.

Source: Inspired in the works by ISA2, and the EIF-related works

Source reference: https://ec.europa.eu/isa2/isa2_en

Last modification: 2024-01-28

Identifier: http://data.europa.eu/dr8/SecurityFrameworkBusinessObject

LOST view: Organisational view

EIRA concept: eira:ArchitectureBuildingBlock

ABB name: eira:SecurityFrameworkBusinessObject

Example: The following implementation is an example of how this specific Architecture Building Block (ABB) can be instantiated as a Solution Building Block (SBB): The EU cybersecurity certification framework - The European Commission puts forward the creation of a EU certification framework for ICT security products in its 2017 proposal for a regulation. - On 13 September 2017 the Commission issued a proposal for a regulation on ENISA, the ""EU Cybersecurity Agency"", and on Information and Communication Technology cybersecurity certification (''Cybersecurity Act''). Certification plays a critical role in increasing trust and security in products and services that are crucial for the digital single market. At the moment, a number of different security certification schemes for ICT products exist in the EU. Without a common framework for EU-wide valid cybersecurity certificates, there is an increasing risk of fragmentation and barriers in the single market. The proposed certification framework will provide EU-wide certification schemes as a comprehensive set of rules, technical requirements, standards and procedures. This will be based on agreement at EU level for the evaluation of the security properties of a specific ICT-based product or service e.g. smart cards. The certification will attest that ICT products and services that have been certified in accordance with such a scheme comply with specified cybersecurity requirements. The resulting certificate will be recognized in all Member States, making it easier for businesses to trade across borders and for purchasers to understand the security features of the product or service. The schemes proposed in the future European framework will rely as much as possible on international standards as a way to avoid creating trade barriers and ensuring coherence with international initiatives."

Interoperability Saliency: The Security Framework ABB is salient for legal and organizational interoperability due to it permits the establishment of security and privacy procedures and rules to determine the provision of public services. This framework will provide secure and trustworthy data exchange between public administrations and in interactions with citizens and businesses.

Interoperability Dimension: Governance IoP

Viewpoint: Interoperability Security viewpoint

Additional identifier: http://data.europa.eu/dr8/SecurityFrameworkBusinessObject

EIF Layer: Organisational

EIRA properties

Namespace URI
rdf: http://www.w3.org/1999/02/22-rdf-syntax-ns#
skos: http://www.w3.org/2004/02/skos/core#
dct: http://purl.org/dc/terms/
eira: http://data.europa.eu/dr8/
Property Value
rdf:type http://www.w3.org/2004/02/skos/core#Concept
skos:notation Properties of Security Framework
dct:identifier http://data.europa.eu/dr8/SecurityFrameworkBusinessObject_Properties
dct:identifier http://data.europa.eu/dr8/SecurityFrameworkBusinessObject
skos:prefLabel Properties of Security Framework
eira:PURI http://data.europa.eu/dr8/SecurityFrameworkBusinessObject
dct:type eira:SecurityFrameworkBusinessObject
dct:modified 2024-01-28
skos:definition Security Framework ABB is a Business Object that enables the protection of various aspects of data, information and knowledge assets and the organizational resources handling them.
eira:definitionSource Inspired in the works by ISA2, and the EIF-related works
eira:definitionSourceReference https://ec.europa.eu/isa2/isa2_en
skos:example The following implementation is an example of how this specific Architecture Building Block (ABB) can be instantiated as a Solution Building Block (SBB): The EU cybersecurity certification framework - The European Commission puts forward the creation of a EU certification framework for ICT security products in its 2017 proposal for a regulation. - On 13 September 2017 the Commission issued a proposal for a regulation on ENISA, the ""EU Cybersecurity Agency"", and on Information and Communication Technology cybersecurity certification (''Cybersecurity Act''). Certification plays a critical role in increasing trust and security in products and services that are crucial for the digital single market. At the moment, a number of different security certification schemes for ICT products exist in the EU. Without a common framework for EU-wide valid cybersecurity certificates, there is an increasing risk of fragmentation and barriers in the single market. The proposed certification framework will provide EU-wide certification schemes as a comprehensive set of rules, technical requirements, standards and procedures. This will be based on agreement at EU level for the evaluation of the security properties of a specific ICT-based product or service e.g. smart cards. The certification will attest that ICT products and services that have been certified in accordance with such a scheme comply with specified cybersecurity requirements. The resulting certificate will be recognized in all Member States, making it easier for businesses to trade across borders and for purchasers to understand the security features of the product or service. The schemes proposed in the future European framework will rely as much as possible on international standards as a way to avoid creating trade barriers and ensuring coherence with international initiatives."
eira:iopSaliency The Security Framework ABB is salient for legal and organizational interoperability due to it permits the establishment of security and privacy procedures and rules to determine the provision of public services. This framework will provide secure and trustworthy data exchange between public administrations and in interactions with citizens and businesses.
eira:concept eira:ArchitectureBuildingBlock
eira:iopDimension Governance IoP
eira:view Organisational view
eira:viewpoint Interoperability Security viewpoint
eira:viewpoint Interoperability Governance viewpoint
eira:eifLayer Organisational