The objective of ACCEPT is to introduce a new holistic way of developing software within a complex ecosystem: following a human-centric Dev-X-Ops process. The process, and the supporting architecture, will be able to strengthen the cybersecurity, data protection and awareness of different stakeholders (developers, testers, users, customers, citizens) in all the development stages. The peculiarities of the human-aware Dev-X-Ops process are: To be holistic: it targets the system, the ecosystem as well as their hardware-software (HW-SW) components. It specifically focuses on vulnerabilities and erroneous states triggered by HW-SW interactions. It is adaptable to different application domains. To be Human centric: it provides easy-to-use facilities. It is focused on the commonly adopted technologies, the human-centric pervasive Internet services. It adopts the “Internet of People (IoP)” paradigm, (i.e., the digitalization of relationships between people and the collection, processing and application of personal data.) Stakeholders should continuously have a clear view of what is going on; be able to verify specific properties or express specific needs; get certification, assurance of the process and the applied methodology; get the continuous enforcement of the required properties; be able to exercise their rights. To be focused on X-aware properties (-X-): it assures security (X=Sec), privacy (X=Pri), transparency (X=Tra), lawfulness (X=Law), accountability (X=Acc), as well as auditability (X=Aud) and certification (X=Cer). It provides means for sharing responsibilities throughout the entire system and ecosystem lifecycle and assuring the X- properties. It targets the leveraging of Consciousness, Learning, Shared knowledge, Overall quality. To be based on DevOps principles: in which two interrelated main phases, namely development and operation, are based on continuous delivery as well as mutual feedback in order to make improvements. To be based on by-design principles: it includes the X-by-design principles (such as Security-by-Design and Privacy-by-Design) in all the Dev-X-Ops stages. To be supported by user-friendly architecture: the architecture includes the most innovative X-Enhancing Technologies (X-ET) and methodologies for supporting all the Dev-X-Ops stages. It assures the self-management and assessment of systems and ecosystems. As reported thereof, the main two phases of the human-aware Dev-X-Ops process are development (Dev) phase and operation (Ops) phase. In the development phase, starting from the specification of vulnerabilities, law and EU directives, system and ecosystem specification, a modeling phase of the system and ecosystems will be considered. In this phase, Model-Driven Architecture (MDA) approaches could be used leveraging conceptual models or Semantic Web based solutions (such as Ontologies). In the development phase, other important activities are the implementation of the targeting properties adopting the by-design principles, as well as offline verification and validation. In the operation phase, new sources for the self-assessment and management of the framework will be considered. These sources deal with new properties (e.g., security, privacy or legal) specific to the target application domain, new devices or systems interacting with the ecosystem as well as the personal data of users involved in the ecosystem itself. A continuous auditing is realized by performing on the one hand verification and validation at runtime, on the other hand continuous monitoring and logging. These online validations and assessment activities will complement the offline validation activity by addressing a continuously evolving attack surface due to new device connections, new user accesses, runtime firmware and software updates of evolving systems and ecosystems.
<script type="text/javascript">
<!--
document.write('<div id="oa_widget"></div>');
document.write('<script type="text/javascript" src="https://www.openaire.eu/index.php?option=com_openaire&view=widget&format=raw&projectId=anr_________::f5fe2b35a7cd8faf8d9ab062d95c3eac&type=result"></script>');
-->
</script>
<script type="text/javascript">
<!--
document.write('<div id="oa_widget"></div>');
document.write('<script type="text/javascript" src="https://www.openaire.eu/index.php?option=com_openaire&view=widget&format=raw&projectId=anr_________::f5fe2b35a7cd8faf8d9ab062d95c3eac&type=result"></script>');
-->
</script>