VBIC Security Architecture for your certification and accreditation needs.
Avoid Duplication: Security Blueprints as Schemas on SMO Server centrally stored and located in the US
Promote interoperability: More than 16 W3C and OSAP Standards used to implement this platform and OS independent Security Architecture. W3C Security Languages used to build Schemas for end-end Security
Reduce costs Security will be updatable without code recompilation, on the fly, incident and case by case based. Different domestic or oversea Partner can have different level of Security Standards
Optimize mission performance Security Schemas will be replaced by Interface-Objects in second phase of Architecture Implementation. Reduced Attack Surface is final goal beside significant performance boost.
Application level Security Requirements for the US (Sarbanes-Oxley) an the EU (Data Protection Act 2003).
Binding Corporat Rules Schemes (BCRS)
VBIC's solution framework
Achieve certification and accreditation in Germany and other EU Member states in 2006 with selected client/partner by building a Prototype Solution. Security Architecture needs to certified and accredited by EU Commission before deadline 27. Oct 2007
VBIC's approach for an Enterprise Security governance model
The proposed Security Project will combine the best and most appropriate elements of existing frameworks
.NET Framework Code Access Security
W3C end-end messaging
PKI with X.509 certificates
Profile based Identity Management
Data warehouse Integration
VBIC's approach will cover the Enterprise Security Architecture for your business and your partners
The Scheme will apply to transfers within a multi-national group. VBIC will obtain approval from the EU for arrangements under which you can transfer personal data from businesses established in the EEA to businesses within their group established in third countries which do not have adequate data protection measures in place.