Certification as a means of providing trust: the European framework. Ingrid Dillo Data Archiving and Networked Services

Similar documents
Trusted Digital Archives

European digital repository certification: the way forward

Trust and Certification: the case for Trustworthy Digital Repositories. RDA Europe webinar, 14 February 2017 Ingrid Dillo, DANS, The Netherlands

Audit & Certification: an auditors perspective. Barbara Sierman, KB National Library of the Netherlands Royal Irish Academy, Dublin 4 june 2013

Assessing the FAIRness of Datasets in Trustworthy Digital Repositories: a 5 star scale

Certification. F. Genova (thanks to I. Dillo and Hervé L Hours)

Data Archiving and Networked Services. Valentijn Gilissen, MA

Caring for research data and what about software? Peter Doorn, director DANS

How FAIR am I? FAIR Principles and Interoperability of Data and Tools

DEVELOPING, ENABLING, AND SUPPORTING DATA AND REPOSITORY CERTIFICATION

Certification Efforts at Nestor Working Group and cooperation with Certification Efforts at RLG/OCLC to become an international ISO standard

Improving a Trustworthy Data Repository with ISO 16363

International Audit and Certification of Digital Repositories

About Knowledge Convergence. e-infrastructures Austria an interdisciplinary case study concerning research resources and their management

Dutch View on URN:NBN and Related PID Services

Science Europe Consultation on Research Data Management

Conducting a Self-Assessment of a Long-Term Archive for Interdisciplinary Scientific Data as a Trustworthy Digital Repository

DCH-RP Trust-Building Report

DSA WDS Partnership Working Group Catalogue of Common Requirements

DRI: Dr Aileen O Carroll Policy Manager Digital Repository of Ireland Royal Irish Academy

Building an Assurance Foundation for 21 st Century Information Systems and Networks

DSA WDS Partnership Working Group Catalogue of Common Requirements

How to make your data open

Agenda. Bibliography

Digital Preservation Standards Using ISO for assessment

Basic Requirements for Research Infrastructures in Europe

GEOSS Data Management Principles: Importance and Implementation

Preservation. Policy number: PP th March Table of Contents

Digital Preservation Policy. Principles of digital preservation at the Data Archive for the Social Sciences

Application nestor Seal for Trustworthy Digital Archives

ISO Self-Assessment at the British Library. Caylin Smith Repository

Conformity Assessment Schemes and Interoperability Testing (1) Keith Mainwaring ITU Telecommunication Standardization Bureau (TSB) Consultant

Guideline on Data Handling and Methods Reporting (DHMR) TSB (School of Social and Behavioral Sciences) Science Committee, 2017

Developing a Research Data Policy

Introduction. When it comes to GDPR compliance, is OK for now enough? Minds made for protecting financial services

Linda Strick Fraunhofer FOKUS. EOSC Summit - Rules of Participation Workshop, Brussels 11th June 2018

Making Sense of Data: What You Need to know about Persistent Identifiers, Best Practices, and Funder Requirements

Trusted Digital Repositories. A systems approach to determining trustworthiness using DRAMBORA

PEFC Norway Standard Document PEFC Norway ST 2002:2009 Issue

31 March 2012 Literature Review #4 Jewel H. Ward

NARCIS: The Gateway to Dutch Scientific Information

Protecting your data. EY s approach to data privacy and information security

DATA PRESERVATION AND SHARING INITIATIVE. 1. Aims of the EORTC QLG Data Repository project

Guidelines 4/2018 on the accreditation of certification bodies under Article 43 of the General Data Protection Regulation (2016/679)

Guidelines for Depositors

ebooks Preservation at Scholars Portal Kate Davis & Grant Hurley Scholars Portal, Ontario Council of University Libraries

Implementation of the CoreTrustSeal

ARTICLE 29 DATA PROTECTION WORKING PARTY

ILNAS/PSCQ/Pr004 Qualification of technical assessors

Building on to the Digital Preservation Foundation at Harvard Library. Andrea Goethals ABCD-Library Meeting June 27, 2016

NIS Standardisation ENISA view

DRI: Preservation Planning Case Study Getting Started in Digital Preservation Digital Preservation Coalition November 2013 Dublin, Ireland

Collection Policy. Policy Number: PP1 April 2015

IBD CERTIFICAÇÕES. Fair Trade Certification Step by step. Welcome to IBD!

Ensuring Proper Storage for Earth Science Data: The USGS Process to Certify Trusted Digital Repositories

CHARTER OUR MISSION OUR OBJECTIVES OUR GUIDING PRINCIPLES

VdTÜV Statement on the Communication from the EU Commission A Digital Single Market Strategy for Europe

THE TRUSTED NETWORK POWERING GLOBAL SUPPLY CHAINS AND THEIR COMMUNITIES APPROVED EDUCATION PROVIDER INFORMATION PACK

EVALUATION AND APPROVAL OF AUDITORS. Deliverable 4.4.3: Design of a governmental Social Responsibility and Quality Certification System

Deliverable 6.4. Initial Data Management Plan. RINGO (GA no ) PUBLIC; R. Readiness of ICOS for Necessities of integrated Global Observations

An Introduction to Digital Preservation

Best Practice Guidelines for the Development and Evaluation of Digital Humanities Projects

Google Cloud & the General Data Protection Regulation (GDPR)

Overview of conformity assessment programs and ASTM International s related activities

Indiana University Research Technology and the Research Data Alliance

An Overview of ISO/IEC family of Information Security Management System Standards

V&A/Icon Conservation and Collections Care Technicians Diploma What is the V&A / Icon Conservation and Collections Care Technicians Diploma?

ISO/IEC INTERNATIONAL STANDARD

The International Laboratory Accreditation Cooperation (ILAC) & The International Accreditation Forum (IAF)

University of British Columbia Library. Persistent Digital Collections Implementation Plan. Final project report Summary version

SECURITY & PRIVACY DOCUMENTATION

Data Discovery - Introduction

"Energy and Ecological Transition for the Climate" Label Control and Monitoring Plan Guidelines

EISAS Enhanced Roadmap 2012

PTSPAS Product Assessment HAPAS Equivalent in accordance with MCHW SHW Volume 1 Clause and

Cybersecurity eit. Software. Certification. Industrial Security Embedded System

ITU Asia-Pacific Centres of Excellence Training on Conformity and Interoperability. Session 2: Conformity Assessment Principles

The Research Data Alliance (RDA): building global data connections CC BY-SA 4.0

Conferenza GARR Moving Forward to deliver an «EOSC in Practice» by 2018

ACCREDITATION: A BRIEFING FOR GOVERNMENTS AND REGULATORS

Towards repository interoperability

NSF Data Management Plan Template Duke University Libraries Data and GIS Services

Strategy for long term preservation of material collected for the Netarchive by the Royal Library and the State and University Library 2014

Texas Reliability Entity, Inc. Strategic Plan for 2017 TEXAS RE STRATEGIC PLAN FOR 2017 PAGE 1 OF 13

TURKISH ACCREDITATION AGENCY. Training, Promotion and Information Directorate

Global Specification Protocol for Organisations Certifying to an ISO Standard related to Market, Opinion and Social Research.

RADAR A Repository for Long Tail Data

The Case for National CSIRTs

Build confidence in the cloud Best practice frameworks for cloud security

TEL2813/IS2820 Security Management

Driving Global Resilience

Enabling Open Science: Data Discoverability, Access and Use. Jo McEntyre Head of Literature Services

Certified Information Systems Auditor (CISA)

ISO / IEC 27001:2005. A brief introduction. Dimitris Petropoulos Managing Director ENCODE Middle East September 2006

GDPR Update and ENISA guidelines

Data Protection. Code of Conduct for Cloud Infrastructure Service Providers

SC27 WG4 Mission. Security controls and services

BHL-EUROPE: Biodiversity Heritage Library for Europe. Jana Hoffmann, Henning Scholz

Security Management Models And Practices Feb 5, 2008

ISTQB in a Nutshell. ISTQB Marketing Working Group. February 2012 v10

Transcription:

Certification as a means of providing trust: the European framework Ingrid Dillo Data Archiving and Networked Services Trust and Digital Preservation, Dublin June 4, 2013

Certification as a means of providing trust: the European Framework Definitions research data Data sharing and trust European Framework The devil s advocate

What is DANS? Institute of Dutch Academy and Research Funding Organisation (KNAW & NWO) since 2005 Mission: promote permanent access to digital research information First predecessor dates back to 1964 (Steinmetz Foundation), Historical Data Archive 1989

DANS main activities and services Encourage researchers to self-archive and reuse data by means of our Electronic Archiving SYstem EASY Our largest digital collections are in archaeology, social sciences and history (moving into other domains) Provide access, through narcis.nl, to thousands of scientific datasets, e-publications and other research information in the Netherlands Data projects in collaboration with research communities and partner organisations Advice, training and support (Data Seal of Approval, Persistent Identifier Infrastructure) R&D into archiving of and access to digital information

Definition research data Factual records, which may take the form of numbers, symbols, text, images or sounds, used as primary sources for research, commonly accepted in the research community as necessary to validate research findings.

Definition research data Data in any format or medium that relate to or support research, scholarship, or artistic activity. Classified as: Raw or primary data: Information recorded as notes, images, video footage, paper surveys, computer files, etc. Processed data: Analyses, descriptions, and conclusions prepared as reports or papers Published data: Information distributed to people beyond those involved in data acquisition and administration

Data is hot! Riding the Wave: critical importance of sharing and preserving reliable data produced during the scientific process Commissioner Kroes: Data is the new gold EC Recommendation on access to and preservation of scientific information: European open access policy

Data fraud: front page news on 29/4/2013

Why is that? Transparency and replication of research Hot item in the Netherlands

Niederlande Renommierter Psychologe gesteht Fälschungen

Why is that? Re-use of data Efficiency in research Combining datasets Usage of datasets in other disciplines Usage of data outside academia Higher return on investment

Importance of research data

Reality of data sharing On a central storage facility outside my department or institute 9% On a network disk of my department or institute 31% Other 1% Locally: on my own computer(s), or on computer(s) of my department or laboratory 36% On external hard disks or backup media (CD, DVD, tape, etc.) 23%

Why not share? Those data are mine! Discredit my findings Still analyzing the data I cannot trust the data produced somewhere else

Trust Trust is at the very heart of storing and sharing data Users Depositors Funders

Trust: What do we mean? What do we rely on? RANG IS ALLEEN RANG ALS ER RANG OP STAAT You can rely on us Can you?

What is a trusworthy digital repository? This is not a Trusted Digital Repository Things are not always what they say they are. Things do not always state what they are.

What is trust built on (in trusted archives)? Dedicate yourself (mission statement) Do what you promise (stable, sincere and competent reputation) Be transparent (peer review, get certified)

What is a trustworthy digital repository? mission to provide reliable, long-term access to managed digital resources to its designated community, now and into the future constant monitoring, planning, and maintenance understand threats to and risks within its systems regular cycle of audit and/or certification

Standards of trust

Assessing trustworthiness

Certification Standards: Data Seal of Approval (DSA) DANS initiative International Board 16 guidelines Self assessment Transparency 14 seals rewarded Data producers are responsible for the quality of research data, repositories for storage and long-term access, and users for correct use of data The research data: can be found on the Internet are accessible (clear rights and licenses) are in a usable format are reliable can be referred to (persistent identifier)

Certification Standards: Germany NESTOR - DIN Competence network for digital preservation WG Certification

Certification Standards: DIN 31644 34 criteria Test audits 2013

Certification Standards: OAIS-model TRAC -> ISO TRAC ISO

Certification Standards: ISO 16363 Over 100 metrics Test audits 2011 Full external auditing process

Certification Standards: ISO metrics Organisational infrastructure Digital object management Infrastructure and security risk management Metric Supporting text Examples of evidence discussion

RAC Bodies Providing Audit And European Certification Certification (ISO 16919 ) Framework trustworthiness of digital repositories using ISO 16363. It covers principles needed to inspire confidence that third party certification of the management of the digital repository has been performed with impartiality, competence, responsibility, openness, confidentiality, and responsiveness to complaints ocumented history of the dures, software, and cess to necessary tools itative Representation objects it contains. agement cedures in place to ed to current MoU Audit and Certification of Trustworthy Digital Repositories (ISO 16363 ) Three-tiered framework Data Seal of Approval Audit by external auditors Monitored self-audit using ISO 16363 (or DIN31644 in Germany) Monitored selfaudit using DSA metrics Formal Certification Extended Certification Basic Certification EUROPEAN FRAMEWORK FOR AUDIT AND CERTIFICATION OF DIGITAL REPOSITORIES to be promoted by the EU and ember-resources/audit-and-certification g

Formal Certification is granted to repositories which in addition to Basic Certification obtain full external audit and certification based on ISO 16363 or DIN 31644 Framework levels Basic Certification is granted to repositories which obtain DSA certification Extended Certification is granted to Basic Certification repositories which in addition perform a structured, externally reviewed and publicly available self-audit based on ISO 16363 or DIN 31644

On-going work on Trust Work Package on Trust within APARSEN project European Framework for Audit and Certification of Digital Repositories seek collaboration with ICSU World Data System (accreditation) RDA Group on Certification

The devil s advocate Trustworthiness of digital repositories is an illusion Too complicated to measure Impossible to maintain over time Too informal too expensive and time consuming

My message Trustworthiness of digital repositories is not an illusion Three levels are clear and balanced Different levels for different needs

The devil s advocate Objective and consistent auditing is an illusion If auditing becomes a career, what will happen to objectivity? (H. Tibbo) Impossible to guarantee consistency around the globe

My message Objective and consistent auditing can be done Auditing already is a career Do not stress consistency around the globe too much

What does trust mean? Trust by definition implies uncertainty You don't have to see the whole staircase, just take the first step. (Martin Luther King)

Thank you for your attention! ingrid.dillo@dans.knaw.nl http://datasealofapproval.org/ www.trusteddigitalrepository.eu

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback