crisp project: overview of findings and lessons learned
TRANSCRIPT
CRISP Project Overview of findings and
lessons learnedInternal TRI Webinar
Thordis Sveinsdottir
Project Partners
Starting point
The EU security market:
• Highly fragmented
• Absence of common certification systems
• Limited mechanism for mutual recognition of
national certification
• Slow introduction to new marked needs and
solutions
Starting point
Security systems often involve intensive
data processing
• potential breach of citizens freedoms.
Absence of holistic approach to
certification
• socio-legal requirements that show respect
for fundamental rights.
CRISP Mission
The CRISP project mission was to develop an innovative
evaluation and certification methodology for security
systems:
increase citizen trust in security technologies
• through evaluating social impacts of security
systems
• certification of systems that comply with the
protection of fundamental rights.
more harmonized playing field for the European
security industry,
• acceptance of security certification across
Europe
– no need for re-certification in each country.
Embedding socio – legal requirements
Approach
Innovative
Holistic
STEFi dimensions
Security
Trust
Efficiency
Freedom infringement
Process
Building blocks
for certification
scheme
Developing STEFi
methodology
Understanding
stakeholders
needs
Researching
current landscape
Glossary and
taxonomy
Stakeholder
consultations
CRISP Advisory
Board
Confidence
enhancement
DPA workshop
Roundtable
certification bodies
Validation and
Scenario-based
workshops
The STEFi methodology
Two main phases: evaluation and
certification
Example evaluation questions STEFi
Building blocks for certification scheme
Key Deliverable - Standards document: CWA
What is a CEN Workshop Agreement?
Official standards document
Agreement developed and approved in a CEN
Workshop
Open to the direct participation of all interested
parties
Fast and flexible development (average 1 year)
Standards document: CWA
Scope of CWA
Example in Annex: Installed video surveillance systems
Challenge:
to come to unambiguous procedures for a multi-
dimensional evaluation that acknowledges the
complexity of the societal context in which security
systems operate.
Certification manual
Provides basic information for the future
owner of the CRISP certification scheme
pictures the overall evaluation and
certification methodology
clarifications on roles and responsibilities of
all parties involved
information on (basic) requirements for
evaluation and certification, including existing
standards and legislation
Roadmap and implementation plan
CRISP project - successes
Very engaged consortium – willing to give time
to think through problems
POs were interested in the project – helpful and
flexible
The expertise of the consortium was fitting the
project – no gaps
Lessons learned
Ambitious project; need to narrow the scope
Certification and standardisation activities need broad
support and engagement from stakeholders
Standards development is an “exact science” – these
activities need extra time
CWA process can be long and complex – need to
consider this when writing proposals