Technical group
Technical Working Group of the Education and Skills Data Space
What are the key security issues to consider for DASES?
We are witnessing records amount of cyberattacks. Cybersecurity will be key to ensure the trust framework we wants for the Dataspace of Education and Skills.
Cyberattacks are now carried out by professional hackers organised in gangs. There are several types of cyber attacks to consider:
- ransomware
- Log4j
- SolarWinds
- Malware
- Emotet
- denial of service (DoS)
- man-in-the-middle (MITM)
- Phishing
- SQL Injection
- Password Attacks
As some of the data exchanged within the dataspace may be personal data (eg learning traces), we will need to make sure those data are properly protected according to Art. 32 GDPR Security of processing. This article lists 4 actions:
- a) the pseudonymisation and encryption of personal data;
- b) the ability to ensure the ongoing confidentiality, integrity, availability and resilience of processing systems and services;
- c) the ability to restore the availability and access to personal data in a timely manner in the event of a physical or technical incident;
- d) a process for regularly testing, assessing and evaluating the effectiveness of technical and organisational measures for ensuring the security of the processing.
The questions we need to discuss are :
- What are the potential security issues associated to our dataspace?
- What barriers we can set up to avoid these issues?
- What are the priorities?
- What new or specific developments are required?
- How to fund these developments?
Report inappropriate content
Is this content inappropriate?
Close debate
What is the summary or conclusion of this debate?
Comment details
You are seeing a single comment
View all comments
Conversation with Gurugets
Several critical security issues must be considered when implementing DASES (Distributed Autonomous Systems for Enhanced Security). With their autonomous and interconnected nature, DASES bring about unique security challenges that require special attention. Here are some of the critical security issues to consider:
Data Privacy: DASES involves collecting, storing, and processing vast data. Data privacy is crucial to protect sensitive information from unauthorized access or misuse. Implementing robust encryption, access controls, and data anonymization techniques can help mitigate privacy risks.
Network Security: DASES rely on interconnected devices and networks, which increase the potential attack surface. Securing the network infrastructure, including firewalls, intrusion detection systems, and robust network segmentation, is vital to prevent unauthorized access, data breaches, or disruptions.
Authentication and Access Control: As DASES in
We are witnessing a record number of cyber attacks (https://requisitos.es). Cybersecurity will be critical to ensure the trust framework we want for the Education and Skills Dataspace.
Loading comments ...