Welcome to the Trust Management project home page.

This is the public view for this Web page.

In the Security Forum meeting in Jan 2008 (San Francisco), members received a presentation by Adrian Seccombe (Eli Lilly), on Trust Models, within the framework of the Jericho Forum's Collaboration Architectures (COA), and with Information Asset Management as a core component.

This presentation built on a Security Track given in the preceding Open Group Conference (q407, Budapest) on 'Trust in a Digital World'.

All these presentations, and additional working documents and white papers are available to members by logging in to this Web page and accessing them in the Latest Documents section.

The outcome from the q108 meeting was agreement to start a new Security Forum project to develop an open industry standard for Trust Management.  The high-level vision is to assign common levels of sensitivity and classification of data, and to build responsive protection mechanisms to assure its secure operation. The term 'trust' is often a barrier in security discussions; where this arises, referring to 'confidence' frequently enables meaningful discussion to proceed.

To deliver this, the Trust Management model is currently envisaged as comprising:

• Impact of failure of trust in collaborations/transactions
  
• classification of data/information involved in collaborations/transactions
• levels of trust - sensitivity categorization
• control strategy - controls appropriate to required levels, based on impact, classification, and required level of trust.