Independent Certification and Testing for interoperability, security and performance #72
davidejalexander
started this conversation in
Ideas
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
The demand for evidence to support the veracity of statements about Wallets, Agents and Cloud Storage is increasing across the globe. The formation of Trust Frameworks and Schemes in some cases have not mandated independent certification or testing in favour of providing rules and frameworks. This appears to be changing and the testing and certification is moving the way of Biometrics and Information Security Management Systems as well as conformance to standards and required performance profiles in terms of accuracy and other forms of security testing.
I am simply saying we need to be thinking about this at the architecture level because the code that gets produced within OWF needs to consider the sort of outputs needed to support certification and testing. This could be the ability to. run compliance tests or independent security tests as well as performance tests against protocols, rules and standards.
We at Mydex have built within our architecture logical points where logging required for various types of monitoring and protection also feed into our requirements for audit purpose and compliance testing.
Do we need to add something to the architecture OWF produce that considers how projects may need to consider the range and type of testing and certification that the components or whole solutions the project produces can fit in easily and consistently into future products and use cases to reduce the overheads and costs of audit, reporting and certification and testing.
Questions arising
Beta Was this translation helpful? Give feedback.
All reactions