| |
|
|
|
|
|
|
Standards, such as ISO/IEC 27001 , can be
used to project the trustworthiness of a business service. These
papers trace this idea from its inception, culminating in the SEDUCER
framework.
- SEDUCER - An EC study (Dec
2000) to devise a framework for projecting the trustworthiness of a
business service (such as a TTP). It makes use of BS7799 Part 2
and the Common Criteria.
- Guaranteeing Secure Transactions (e-Trust) - A paper based on a presentation given at the second E-Commerce and the
Supply Chain Revolution Conference held in London in June
1999.
- Accreditation
criteria for secure information systems -
This paper traces the evolution of criteria for
the homologation (accreditation) of secure
information systems and services, and shows the
importance of real time risk management. It also
suggests that BS7799 may offer a more attractive
alternative to ITSEC system evaluation. It was presented
on 16 March 1998 at Eurosec in Paris.
- Market
Expectations of Trustworthiness in Third Party
Electronic Services - a summary of our market
survey for the UK Department of Trade and Industry published in
April 1997, together with an extract concerning a taxonomy of
TTP services.
- Commercially-driven
independent accreditation: an effective way ahead - examine why the directors of the Insurefast
Company were seeking a public statement of
assurance in the security of their service and
how we proposed to provide one. The paper was presented on
18 March 1997 at Eurosec in Paris.
|
