1 / 59

FI-PPP Business Opportunities for SMEs

FI-PPP Business Opportunities for SMEs. thierry.nagellen@orange.com pascal.bisson@thalesgroup.com. April, 16 th 2014. AGENDA. Part 1 : Future Internet Public Private Partnership introduction Part 2 : FI-WARE, FI-Lab & FI-Ops: what’s that? Part 3 : FI-WARE websites

silas
Télécharger la présentation

FI-PPP Business Opportunities for SMEs

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. FI-PPP Business Opportunities for SMEs thierry.nagellen@orange.com pascal.bisson@thalesgroup.com April, 16th 2014

  2. AGENDA • Part 1: Future Internet Public Private Partnership introduction • Part 2: FI-WARE, FI-Lab & FI-Ops: what’s that? • Part 3: FI-WARE websites • Part 4: Open Specs and API: opportunities for SMEs • Part 5: Some Generic Enablers Implementations • Part 6: Sum up for SMEs

  3. PART 1 Future Internet Public Private Partnership Introduction

  4. Future Internet Public Private Partnership introduction (1) • European initiative to structure collaborative projects into a common program • Industrial commitment to push research results to the market (pre-industrialisation) • Together techno-push and market-pull: • Propose new technologies (European leadership) • Interactions with Use-Cases (fullfiment of market requirements) • Involvement of new partners (especially from vertical sectors) • Large budget: 300 M€ with 100 M€ dedicated to SMEs

  5. Future Internet Public Private Partnership introduction (2) 04/2013 04/2014 04/2015 04/2011 CONCORD: program coordination INFINITY: infrastructures XiFi infrastructure FIspaceSmartAgri+Logistics Fi-Content 2 EnvirofiEnvironnemental Data Finesce Smart Grid OutsmartUtilities & Urban Monitoring I3H FIC3 FITMAN manufacturing FinsenySmart Grids OPEN INNOVATION 16 Accelerators FI-Star eHealth Instant MobilityMultimodal services in urban areas SafecitySaferCities FinestInterurbanLogistics FI-Content Enriched Content FI-Core: Tech Found. FI-Ware: Core Platform SmartAgriFood Fromethefarm to the fork INNOVATE ADOPT ! TEST

  6. Future Internet Public Private Partnership introduction (3) • More info about the programme and the projects www.fi-ppp.eu

  7. Future Internet Public PrivatePartnership introduction (4) FI-PPP Call 3 Infrastructures Scenarios UC platforms SME Phase 3 project SME SME ?? SME GenericEnablers SME WE WE ?? ?? SME SME WE Phase 3 project SME WE WE WE WE Regionalpolicies WE ?? WE ?? WE Phase 3 project WE WE Services and applications WE WE WE WE WE Entrepreneurialcommunities WE ?? WE SME ?? SME SME SME WE ?? SME SME SME SME SME SME SME …Involving hundreds of SMEs and WebEntrepreneurs… Results phase 1 + 2,… …Brought intoup to 20 projects… …Developing services and applications.

  8. Future Internet Public Private Partnership introduction (5) • Main messages

  9. Video 1 Campus Party 2013 in London

  10. PART 2 What’s that ?

  11. FI-WARE, FI-Lab, FI-Ops: what’s that? (1) • They are 3 products • FI-WARE: • Provide Generic Enablers • Something you can use in different ways for your « own »platform • Common part to break the silos • FI-Lab • A sandbox to test and use Generic Enablers • Cloud facilities distributed through Europe (5+12 data centers) • What you get: free Virtual Machines (5) + 10Gb • FI-Ops: for paltform providers • Tools to deploy and federate the data centers using FI-WARE framework

  12. FI-WARE, FI-Lab, FI-Ops: what’s that? (2) • FI-WARE: architecture overview

  13. FI-WARE Generic Enablers Cloud Enablers Apps Enablers I2ND Enablers Data /Context Enablers IoT Enablers Security Enablers

  14. Video 2 FI-WARE Challenges

  15. PART 3 FI-WARE Websites

  16. FI-WARE websites (1) • Everything is on www.fi-ware.org • But we will have a quick tour of: • catalogue.fi-ware.org a kind of executive summary per Generic Enabler • edu.fi-ware.org the e-Learning platform to discover Generic Enablers Features • wiki.fi-ware.org the place to find much more details • And then, you will be able to create your account on FI-Lab to play and test Generic Enablers • lab.fi-ware.org

  17. FI-WARE websites (2) • Everything is on www.fi-ware.org

  18. FI-WARE websites (3) • catalogue.fi-ware.org a kind of executive summary per Generic Enabler

  19. FI-WARE websites (4) • catalogue.fi-ware.org a kind of executive summary per Generic Enabler Provide feedback

  20. FI-WARE websites (5) • edu.fi-ware.org the e-Learning platform to discover Generic Enablers Features

  21. FI-WARE websites (6) • edu.fi-ware.org : you can find detailed courses per Generic Enabler

  22. FI-WARE websites (7) • wiki.fi-ware.org the place to find much more details Key points !

  23. FI-WARE websites (7) Open Specs API From description to concrete softwares

  24. Video 3 Smart City Expo 2013

  25. PART 4 Open Specs and API: Opportunities for SMEs

  26. Open Specs and API: opportunities for SMEs • Open Secs: FREE • Documentation is available • You can understand main features of Generic Enabler: (can be re-use for multiple verticals and associated service platforms) • Your comments are more than welcome! • Become part of the community and share with us, and with your ecosystem • API: FREE • For your developers to plug your onw software into Generic Enablers • To develop your own instances of Generic Enablers and be compliant & interoperable • Open or create your paltform/services to/for other verticals • Again, your comments and contributions are more than welcome! • Licence models (for concrete softwares) • 70% are now in Open Source => you can contribute !

  27. API example: OMA-NGSI (1) • OMA NGSI 9 & 10: API for 11 Generic Enablers • Data & Context Management: • Context Broker • Complex Event Processing • Big Data • Location Platform • Internet of Things • Backend Device Management • Backend Configuration Manager • Backend Template Handler • Backend IoT Broker • Gateway Data Handling • Gateway Device Management • Gateway Protocol Adapter

  28. API example: OMA-NGSI (2) • OMA NGSI 9 & 10 Data Model

  29. API example: OMA-NGSI (3) • OMA NGSI 9 & 10 Operations

  30. API example: OMA-NGSI (4) • OMA NGSI 10 RESTful interface: resource structure

  31. API example: OMA-NGSI (5) • OMA NGSI convenience interactions examples

  32. Video 4 Campus Party Brazil 2014

  33. PART 5 Some Generic Enablers Implementations

  34. Internet of Things (1) • From Architecture to Implementation Several implementations

  35. Internet of Things (2) • Multiple implementation are linked to industrial partners technical choices • Backend Configuration Manager: Orion vs IoT Discovery • Orion is a fully integrated version of Configuration Manager (IoT) and Context Broker (Data & Context Management) • IoT Discovery is a Configuration Manager with optional features as geographical discovery (which are the things in this geographical area) • Gateway Protocol Adapter • At least one instance per specific protocol • Available: Zigbee, Coap & EPC Global (RFID) • Other examples in other technical chapters: • Security: Identity Management • Data & Context Management: Context Broker

  36. Gateway Data Handling: Esper4FastData (1) • Provide intelligence inside gateways and transform data into information in real-time

  37. Gateway Data Handling: Esper4FastData (2) Its own detailed architecture

  38. Video 5 Kurento demo in Campus Party Brazil 2014

  39. Security Architecture

  40. http://catalogue.fi-ware.eu/ FI-WARE: Catalog

  41. Security Monitoring GE • Focus on following features: • MulVALAttack Paths Engine • Scored Attack Paths • Remediation

  42. Security Monitoring GE – V3 - Architectural design

  43. Security Monitoring GE service offer • For FI-PPP Liaison we offer the following main functionalities: • identifying the vulnerabilities and potential attacks, • evaluating the business impact, • proposing countermeasuresand increase the cyber resilience. • 4 steps: • extract semi-automatically all the information needed • generate attack graph by MulVAL • calculate the scored attack paths • compute some remediations with their cost

  44. MulVAL Attack Paths • Functions available for the User: • Visualized attack tree • Global risk level: Score metrics obtained from Common Vulnerability Scoring System (CVSS), • Inputs: • Automatic collection • Information about network topology • => via Vulnerability scanners (Nessus, OVAL) and CMDB • Machines, Accounts, Network services, Dependency graph, IP / Hostname of the machines • Vulnerability identifier • Via Common Vulnerabilities and Exposures (http://cve.mitre.org/) • Semi automatic • Security Policy (Business dependent)

  45. SecMon GE feature Attack Path Engine Testbed: http://secmonitoring.testbed.fi-ware.eu/AttackGraphEngine/attackgraph.jsp

  46. Scored Attack Paths • Functions available for the User: • Extension of the score assessment at the path level • Given a target node, each path leading to that node is given a score. • The score of each path reflects the risk associated to the path as a whole • Business impact scoring (semi manual process) • It is left to organisation taking into account the business challenges • Impact scoring offers an assessment of the extent to which processes and security policies are impacted when a given IT asset target has been compromised • Rationale: • Risk scores provided by MulVAL is not sufficient • For each node in the attack graph, a risk score is computed • Does not allow a generic assessment of the attack graph as a whole • Does not take into account the impact on processes and the business • Scored paths are mandatory for the remediation process (prioritization)

  47. SecMon GE feature Scored Attack Path Testbed: http://secmonitoring.testbed.fi-ware.eu/ScoredAttackPaths

  48. Remediation app • Functions available for the User: • Provide tool for proposing cost-sensitive remediations • Propose remediations to these attack paths with their cost • Validate the chosen remediation • Compute different remediation options that could interrupt the selected attack path • A path may include several vulnerabilities: each one of them can be targeted separately • Eliminating one single condition may interrupt the whole attack path • Prerequisites: • Needs a remediation database (e.g. patches related to vulnerabilities) • Use network topology (automatically collected) to compute which firewall rules could be deployed

  49. SecMon GE feature Remediation App Testbed: http://secmonitoring.testbed.fi-ware.eu/Remediation

  50. Access Control GE • Functions available for the User: • RBAC & ABAC policyenforcementwith XACML (OASIS standard) • REST API for PDP & PAP • Multi-tenancy • Attribute Sources • LDAP directory • SQL DB • REST/JSON API • Easyintegration of plugins for other sources (extensible API) • Flexible accounting • OAuthtoken validation & parsing • PEP • Ready-made PEP as HTTP Reverse-Proxy or Servlet PEP • Java SDK for custom PEP • Thales Use Case: • GIS Access Control in a C4ISR system for French government & NATO FI-WARE Use Case – Cloud API Access Control

More Related