Result description
A separate component of the Blueprint Architecture will address specific issues in AAI and audit or accounting, and deliver a set of recommended interfaces drawn directly from the AARC Tree project which runs parallel to Entrust. Several consortium members involved in related work with AARC projects will liaise with DG CNECT to standardise authentication interfaces using part of the architectural approach from AARC specifications. Specifically, EOSC Entrust will look at the additional requirements of TREs where the need to identify a researcher is tighter and requires specific skills and qualifications.
Problem addressed
Actors interested in TREs (most of them EU MS) need them to be sovereign, without compromising the possibility of building transnational networks where people can share sensitive data. To ensure users with different attributes can access and use only specific datasets, appropriate interfaces capable of issuing the right permissions are required. Authentication interfaces with this feature do not exist widely, and furthermore existing ones are not standardised. In EOSC Entrust this problem will be addressed with the goal of establishing a minimum standard valid for the EOSC Federation and the Common European Data Spaces, in particular the European Health Data Space.
Regarding audit, the “third A” in AAI, TREs are required to be audited and auditable. This means TREse need to be able to keep a record of who has been given access to (and has actually accessed) what, which goes far beyond allowing people in the TRE or not. This is part of the development of the TRE interfaces.
Who can use the result
All actors dealing with sensitive dataTimeline
Successive versions to be delivered by Q4 of 2024, 2025, and 2026.How to use the result
Type of result
