Overview: July 25-27, 2022
Click here for the event Agenda where you will find synopses of the presentations.
The presentations, linked below for each day, are freely available to members of The Open Group and event attendees.
Zero Trust Architecture
Zero Trust and Zero Trust Architecture (ZTA) represent a fundamental shift in security from implicit permissions to explicit permissions to allow access only to those who need it when they need it, bringing security to the users, data & information, applications, APIs, devices, networks, cloud, etc. wherever they are – instead of forcing them onto a “secure” network. Zero Trust Architecture ensures the data can keep their integrity across their entire lifecycle. By securing at the asset-level and utilizing secured zones as required, organizations can pursue business objectives while effectively managing risk and continue to operate while in a state of assumed breach. Organizations can maintain agility and compete in the Digital Age while remaining secure, operating in a world characterized by velocity, complexity, and disruption, with the goal of enabling better user experience through simplicity, speed, and ability to support scale.
Supply Chain Security
Threats to supply chain integrity are a global problem that impacts users and consumers of Information and Communications Technology (ICT). Solving this problem requires international adoption of best practices and standards by government and enterprise customers and large and small vendors who are all part of the supply chain.
NASA SEWP has worked with the Department of Defense (DoD), Private Industry, and International Standards Groups for 20 years on Supply Chain Risk Management (SCRM) practices and standards, and on Government-Wide Acquisition Contracts (GWACs). The NASA SEWP acquisition platform includes the Open Trusted Technology Provider™ Standard (O-TTPS), technically equivalent to ISO/IEC 20243:2018, for “maliciously tainted and counterfeit products”. There is a direct correlation between the ISO standard and the controls and practices advocated by NIST. The standard addresses some SCRM needs and can be leveraged by federal buyers to comply with recommended practices, and can be applied throughout Government buying platforms utilizing articulated requirements.
The Open Trusted Technology Provider™ Standard (O-TTPS)
The O-TTPS helps to assure product integrity and supply chain security so that industry can Build with Integrity, Buy with Confidence™ following best practices in all phases of a product's lifecycle – design, sourcing, build, fulfillment, distribution, sustainment, and disposal – to enhance the integrity of COTS ICT products, and the security of their global supply chains by focusing on the verification of procedures used within the organization to maintain the security and integrity of the supply chain, rather than on the testing of individual products or systems. The certification program is one of the first of its kind in providing certification for conforming to standards for product integrity coupled with supply chain security.
Visit The Open Group Blog for event highlights.
Visit The Open Group YouTube channel for event recordings.
For details of future events hosted by The Open Group, please refer to www.opengroup.org/events.
If you are interested in presenting at future events, then please submit a Presentation Proposal.