HOME > BLOG
Blog
Building blocks (MEDINA at ETSI Security Conference 2022)
Björn Fanta (Fabasoft) presented the MEDINA project at the ETSI Security Conference 2022 as chair of the Security Research track on day 3 of the conference, that took place from 3rd to 5th October, in ETSI, Sophia Antipolis, France. MEDINA was also presented with a...
Feedback provided to ISO/IEC 27017 on continuous (automated) monitoring
In MEDINA, we see the topic of standardization as a necessary enabler for maximizing the impact of the project's results, but also to guarantee their sustainability even after our activities have finalized. Aligned with this vision, the project developed its own...
ISACA GRC Kongress 2022
Last September 28th 2022, the German chapter of ISACA (Berufsverband der EDV-Revisoren und IT-Sicherheitsmanager) organized their annual congress in Mannheim under the title IT-GRC Kongress 2022. On behalf of MEDINA, partner Bosch participated with a talk on the topic...
The MEDINA Cloud Certification Language
Cloud security certification schemes consist of a set of rules, technical requirements, standards and procedures to strengthen the cybersecurity of ICT services and products. Terms and conditions of such schemes are published in natural language. This is the case,...
Continuous compliance: From traditional auditing to real-time certification
In the blog article Continuous compliance: From traditional auditing to real-time certification Fabasoft centered on the advantages of continuous compliance in the context of the MEDINA project – including the company compliance dashboard, which is the focus of this...
StandICT.eu 2023 & MEDINA kick-off their collaboration with an MoU to reinforce European standardisation efforts in the cloud security certification field
StandICT.Eu 2023 is a European initiative supporting the EU engagement in international ICT standardisation. It has two key axes; firstly, it funds European fellowships in ICT standardisation through a series of Open calls providing a total of almost 3M€ of funding....
MEDINA participated in the IWCSEC 2022 workshop at the ARES_Conference
MEDINA Technical Manager Jesus Luna from BOSCH has participated in a panel titlled "Delta certification - challenges and possible solutions" within the IWCSEC 2022 workshop at the ARES Conference 2022. This ARES 2022 panel on the topic of delta certification discussed...
Automating Certification Decisions
MEDINA supports Cloud Service Providers and Auditors in the certification process at various stages, including collection, assessment, storage, and management of evidences. Apart from this, we aim at automating the derivation of a certification decision based on the...
MEDINA SSI-based cloud security certification management
Nowadays, the legal entity that performs a conformity assessment of Cloud Service Providers (CSP) against relevant regulations and standards is the Conformity Assessment Body (CAB). It carries out audit following the required regulations. Once the audits are...
Using NLP to extract compliance-related evidence
"Repost from Fabasoft blog" Fabasoft has been heavily invested in the fields of cybersecurity, data privacy, compliance, and their shared connection with components of artificial intelligence (AI) for some time, in part through the company’s involvement in the...