Definition: Security Framework ABB is a Business Object that enables the protection of various aspects of data, information and knowledge assets and the organizational resources handling them.
Source: Inspired in the works by ISA2, and the EIF-related works 
Source reference: https://ec.europa.eu/isa2/isa2_en
Example: The following implementation is an example of how this specific Architecture Building Block (ABB) can be instantiated as a Solution Building Block (SBB): The EU cybersecurity certification framework - The European Commission puts forward the creation of a EU certification framework for ICT security products in its 2017 proposal for a regulation. - On 13 September 2017 the Commission issued a proposal for a regulation on ENISA, the ""EU Cybersecurity Agency"", and on Information and Communication Technology cybersecurity certification (''Cybersecurity Act''). Certification plays a critical role in increasing trust and security in products and services that are crucial for the digital single market. At the moment, a number of different security certification schemes for ICT products exist in the EU. Without a common framework for EU-wide valid cybersecurity certificates, there is an increasing risk of fragmentation and barriers in the single market. The proposed certification framework will provide EU-wide certification schemes as a comprehensive set of rules, technical requirements, standards and procedures. This will be based on agreement at EU level for the evaluation of the security properties of a specific ICT-based product or service e.g. smart cards. The certification will attest that ICT products and services that have been certified in accordance with such a scheme comply with specified cybersecurity requirements. The resulting certificate will be recognized in all Member States, making it easier for businesses to trade across borders and for purchasers to understand the security features of the product or service. The schemes proposed in the future European framework will rely as much as possible on international standards as a way to avoid creating trade barriers and ensuring coherence with international initiatives."
IoP Dimension: Governance IoP
LOST view: Organisational view
Interoperability saliency: The Security Framework ABB is salient for legal and organizational interoperability due to it permits the establishment of security and privacy procedures and rules to determine the provision of public services. This framework will provide secure and trustworthy data exchange between public administrations and in interactions with citizens and businesses.
Identifier: http://data.europa.eu/dr8/SecurityFrameworkBusinessObject
eira:ID: ABB223
ABB name: eira:SecurityFrameworkBusinessObject
EIRA concept: eira:ArchitectureBuildingBlock
Last modification: 2022-12-01
					 
					
						
							
								
									|  |  | 
							
							
								| eira:PURI | http://data.europa.eu/dr8/SecurityFrameworkBusinessObject | 
| dct:type | eira:SecurityFrameworkBusinessObject | 
| dct:modified | 2024-01-28 | 
| skos:definition | Security Framework ABB is a Business Object that enables the protection of various aspects of data, information and knowledge assets and the organizational resources handling them. | 
| eira:definitionSource | Inspired in the works by ISA2, and the EIF-related works | 
| eira:definitionSourceReference | https://ec.europa.eu/isa2/isa2_en | 
| skos:example | The following implementation is an example of how this specific Architecture Building Block (ABB) can be instantiated as a Solution Building Block (SBB): The EU cybersecurity certification framework - The European Commission puts forward the creation of a EU certification framework for ICT security products in its 2017 proposal for a regulation. - On 13 September 2017 the Commission issued a proposal for a regulation on ENISA, the ""EU Cybersecurity Agency"", and on Information and Communication Technology cybersecurity certification (''Cybersecurity Act''). Certification plays a critical role in increasing trust and security in products and services that are crucial for the digital single market. At the moment, a number of different security certification schemes for ICT products exist in the EU. Without a common framework for EU-wide valid cybersecurity certificates, there is an increasing risk of fragmentation and barriers in the single market. The proposed certification framework will provide EU-wide certification schemes as a comprehensive set of rules, technical requirements, standards and procedures. This will be based on agreement at EU level for the evaluation of the security properties of a specific ICT-based product or service e.g. smart cards. The certification will attest that ICT products and services that have been certified in accordance with such a scheme comply with specified cybersecurity requirements. The resulting certificate will be recognized in all Member States, making it easier for businesses to trade across borders and for purchasers to understand the security features of the product or service. The schemes proposed in the future European framework will rely as much as possible on international standards as a way to avoid creating trade barriers and ensuring coherence with international initiatives." | 
| eira:iopSaliency | The Security Framework ABB is salient for legal and organizational interoperability due to it permits the establishment of security and privacy procedures and rules to determine the provision of public services. This framework will provide secure and trustworthy data exchange between public administrations and in interactions with citizens and businesses. | 
| eira:concept | eira:ArchitectureBuildingBlock | 
| eira:iopDimension | Governance IoP | 
| eira:view | Organisational view | 
| eira:viewpoint | Interoperability Security viewpoint | 
| eira:viewpoint | Interoperability Governance viewpoint | 
| dct:identifier | http://data.europa.eu/dr8/SecurityFrameworkBusinessObject | 
| eira:eifLayer | Organisational |