1 / 23

InterPARES Trust

InterPARES Trust. Trust and Digital Records in an Increasingly Networked Society InFuture2013 7 Nov 2013 Adam Jansen University of British Columbia. The ‘Challenge’. Technology advances result in massive amounts of data Sharing resources = cost savings

danieljmartinez
Download Presentation

InterPARES Trust

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. InterPARES Trust Trust and Digital Records in an Increasingly Networked Society InFuture2013 7 Nov 2013 Adam Jansen University of British Columbia

  2. The ‘Challenge’ • Technology advances result in massive amounts of data • Sharing resources = cost savings • Increasingly gov’t, public trust organizations shifting to Cloud • Ownership, jurisdiction, privacy key issues with internet-based records • Need for shared regulatory and procedural framework • Question of Trust

  3. What is Trust? • Two or more parties engaging in a relationship of vulnerability, dependence and reliance • Based on alignment of value systems based on specific goals • Benefits outweigh the risks based on a Risk assessment • Based on perception based on current information, passed methods

  4. Transition to Online • Govs, Utilities, Hospitals, Banks shifting to Cloud services • Utilizing web-based resources requires trust of the providers based on their trustworthiness • What constitutes a trustworthy trustee?

  5. Trustworthy Trustees • Based on: • Reputation, based on past actions • Performance, executing responsibilities • Confidence, ability for future action • Competence, expertise to complete task • Requires knowledge of, experience with Trustees… • But what if we don’t know?

  6. Trustworthy Cloud Trustees? • “The service offerings are provided ‘As Is.’ We and our affiliates and Licensors make no representations or warranties of any kind, whether express, implied, statutory or otherwise regarding the service offerings or the third party content, including any warranty that the service offerings or third party content will be uninterrupted, error free or free of harmful components, or that any content, including your content or the third party content, will be secure or not otherwise lost or damaged..” • “We guarantee that at least 99.9% of the time we will successfully process correctly formatted requests that we receive to add, update, read and delete data”

  7. What is Cloud Computing? • As defined by NIST: “Cloud Computing is a model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources (e.g. networks, servers, storage applications, and services) that can be rapidly provisioned and released with minimal management effort or services provider interaction. This cloud model promotes availability and is comprised of five essential characteristics, three service models, and four deployment models.”

  8. Five Essential Characteristics • On-Demand self-service • Grow as required based on user needs without provider support • Broad network access • Available over network using standard internet-aware devices • Resource pooling • Shared resources among many different, un-related users • Rapid elasticity • Rapid increase/decrease cloud capabilities on demand • Measured service • Pay for only what you use

  9. Four Deployment Models • Private Cloud • Used solely by the organization • Managed internally or by third party • Community Cloud • Shared resources among several organizations of shared concerns • Managed by one of the party or by third party • Public Cloud • Infrastructure available to the public • Operated by for profit third parties • Hybrid • Combination of two or more of the above

  10. Goal of InterPARES Trust (IPT) “To generate the theoretical and methodological framework that will support the development of integrated and consistent networks of policies, procedures, regulations, standards and legislation that can be applied to digital records that are created, stored and accessed using the Internet.“

  11. Objectives To determine: • What affect policies and practices of handling of digital records has on the public’s trust • Future problems in maintaining trust in digital records when organization suffers a waning level of confidence • What significance does national/cultural contexts have on the level of trust in digital records

  12. Objectives • Model policies, procedures, and practices for creating, managing, accessing, and/or storing records on the Internet • Formulate proposals and models for law reform, and functional requirements for the systems

  13. Theoretical Framework • To achieve the objectives, IPT will use • Combination of archival and diplomatic theory – focus on concepts that are foundational to trusting records • resource-based theory, which focuses on the capabilities of an organization for leveraging available resources to maximize competitive advantage • Risk management concepts weighing trust in relation to the amount of security, risk and exposure that an organization is willing to accept to achieve its goals

  14. Theoretical Framework Continued: • Argumentative process in the course of which an image of the problem and of the solution emerges gradually among the participants, as a product of incessant judgment, subjected to critical argument • Particular focus of will be on Human-Computer Interaction (HCI) as creators of the tools and interfaces to access web-based resources

  15. IPT approach to research Multi-faceted, Diversified, and Dynamic: • multi-faceted in order to deal with the polymorphism of digital records produced and accessed using a myriad of digital devices; • diversified in order to accommodate the varied requirements produced by different social, cultural, and organizational contexts; and • dynamic in order to respond to the rapid pace of technological change, while accounting for current uses as well as future uses and expectations

  16. IPTrust Team Composition • Five major groups • North America • Latin America • Asia • Europe • Multinational Organizations

  17. Participating Institutions National Archives of Mexico, National Archives of Brazil, British Library, European Commission Anti-Fraud Office, International Federation of Red Cross and Red Crescent Societies, International Monetary Fund, International Records Management Trust, Israel State Archives, National Institute of Standards and Technology, NATO, Renmin University of China, Mid-Sweden University, University of British Columbia, Government of British Columbia, State Archives Belgium, UNESCO, University College London, and University of Washington.

  18. Team Europe Croatia strongly represented in team Europe: a research team from the University of Zagreb —Department of Information and Communication Sciences, Faculty of Humanities and Social Sciences (FHSS) and partners from the Croatian State Archives, the Faculty of Organisation and Informatics, the National and University Library, the Croatian Information and Documentation Referral Agency of the Government of the Republic of Croatia, FINA, the University of Zagreb -- University Computing Centre, Croatian State Archives and Teched Consulting Services, Ltd.

  19. Project Deliverables • Generate new knowledge regarding digital records maintained on Internet connected resources and accessed through a myriad of digital devices • New methods for identifying and protecting the balance between privacy and access, secrecy and transparency, the right to know and the right to forget • Model legislation related to e-evidence, cybercrime, security and privacy • Develop methods for the authentication of identity on the Internet and for protection against on-line fraud

  20. Project Deliverables (cont.) • Develop policy models, procedures and standards to manage records on the Internet • Education modules for professionals and academic curricula for graduate programs • Functional requirements and specifications for securing online records systems • Analytic frameworks that can be used to evaluate business models emerging from and only possible in the evolving Internet environment

  21. Research Proposals • Metadata Design • Protection of Privacy • Patents and Trust • Contract Terms • Retention Specifications • Open Data/Big Data • Standards of Practice

  22. Conclusion • Organizations increasingly turning to the Cloud • Question of Risk, Trust unanswered • Jurisdiction, control, management, privacy • Focus on relationship between record holder and public • What level of risk is acceptable • Produce model legislation and policy framework

  23. Questions? Adam Jansen adam@mail.ubc.ca www.interparestrust.org

More Related