TCI Reference Architecture v1.1
TCI Reference Architecture v1.1
Uploaded by
Archil GogorishviliCopyright:
Available Formats
TCI Reference Architecture v1.1
TCI Reference Architecture v1.1
Uploaded by
Archil GogorishviliOriginal Description:
Copyright
Available Formats
Share this document
Did you find this document useful?
Is this content inappropriate?
Copyright:
Available Formats
TCI Reference Architecture v1.1
TCI Reference Architecture v1.1
Uploaded by
Archil GogorishviliCopyright:
Available Formats
Reference Architecture Version 1.
1
Guiding Principles
Define protections that enable trust in the cloud.
Develop cross-platform capabilities and patterns for proprietary and open-source providers.
Will facilitate trusted and efficient access, administration and resiliency to the customer/consumer. Business Operation Information Technology Presentation Services Security and Risk
Presentation Platform
Support Services Operation & Support Management
Provide direction to secure information that is protected by regulations.
The Architecture must facilitate proper and efficient identification, authentication, authorization,
administration and auditability. Presentation Modality End-Points
Centralize security policy, maintenance operation and oversight functions.
Access to information must be secure yet still easy to obtain.
(BOSS) (ITOS) Consumer Service Platform Enterprise Service Platform Mobile Devices
Mobile Device Management Company
Desktops
Speech Recognition
(IVR) Governance Risk & InfoSec
Delegate or Federate access control where appropriate.
B2E B2M
owned
Third-Party Public Kiosk Compliance Management
Social Portable Devices
Must be easy to adopt and consume, supporting the design of security patterns Colaboration Compliance Policy Management
The Architecture must be elastic, flexible and resilient supporting multi-tenant, multi-landlord platforms Compliance IT Operation Media B2B B2C
Handwriting Management Exceptions Self Assessment
Capability
Mapping
Fixed Devices Medical Devices Smart Appliances (ICR)
The architecture must address and support multiple levels of protection, including network, operating Search E-Mail e-Readers P2P Vendor Audit IT Risk Risk Portfolio Risk
Audit Planning Management Management Management Management Dashboard
system, and application security needs. Contact/Authority DRP IT Governance
Independent Third-Party Internal Maintenance Technical Awareness and Training Residual Risk Management
High Level Use Cases Audits Audits Audits Plan Test Architectrure Standards and
Information System Regulatory Management Management Governance Guidelines
Mapping
Intellectual Property Protection
Privilege Management Infrastructure
Data Governance
Resource
Management
PMO
Program
Portfolio
Management Application Services Identity Management
Domain Unique
Identifier
Federated IDM
Authentication Services
SAML
Token
Risk Based
Auth
Multifactor
Mgmnt
Segregation Maturity
Data Ownership /
Stewardship
Data
Classification
Handling / Labeling /
Security Policy of Duties Project
Mgmnt
Model Programming Interfaces Security Knowledge Lifecycle Integration Middleware Identity
Provisioning
Attribute
Provisioning
OTP
Smart
Card
Password
Management
Secure Disposal of Rules for Information Contractors Roadmap Biometrics Network
Clear Desk Policy
Data Leakage Prevention Remediation Authentication
Strategy Alignment Input Single Sign On
SaaS,
Rules for Validation Security
Authorization Services Middleware
Data Retention Attack Code Security Application Policy WS-Security Authentication
PaaS, IaaS Design Policy Definition
Patterns Samples Framwrok - ACEGI Enforcement
Patterns Identity Verification OTB AutN
Policy Principal Data
Operational Risk Human Resources Service Delivery Mangement Management
Connectivity & Delivery Resource Data Privilege Usage Management
Management Security Development Process Management
XACML
Keystroke/Session Password
Role
Operational Risk Committee Service Level Information Technology Obligation Logging Vaulting
Self-Service Software Quality Assurance Management
Privilege Usage Resource
Crisis Business Management Resiliency Application Stress and Out of the Box (OTB) AutZ Gateway Protection
Security
Management Impact Analysis Employee Employment Vulnerability Volume
Code Review
Key Risk Indicators Termination
Background
Agreements
Job
Objectives Internal SLAs
Availability Resiliency
Scanning Testing
Abstraction
Business Continuity Screening Descriptions
OLAs External SLAs Management Analysis
Threat and Vulnerability Management
Planning Testing Roles and Employee Vendor Management
Responsibilities Awareness Capacity Planning Compliance Testing Vulnerability Management
Risk Management Framework Service Dashboard
Information Services
Employee Code of Conduct Databases Servers Network Application Infrastructure DB
Business Technical
Assessment Assessment
Independent Risk Management Asset Management Application Performance Penetration Testing Threat Management
Service Operational Monitoring Service Delivery Reporting Services ITOS Problem
Management
Incident
Management
BOSS Internal External Source Code Scanning Risk Taxonomy
PMO Strategy Roadmap
Security Monitoring Services Costing Bugdeting Service
Catalog
SLAs OLAs Dashboard Data Mining Reporting Tools Business Intelligence Risk
Assessments
Data Process
SIEM Event Database Application Honey End-Point Charge
Back
Investment
Budgeting
CMDB
Knowledge
Management
Classification Ownership
Infrastructure Protection Services
Platform Mining Monitoring Monitoring Pot Monitoring
Contracts
Recovery
Plans Data Governance Security Monitoring HR Data
White
Listing
Server End-Point
Event Cloud E-Mail Market Threat Counter Non- Service Change Audit Business
(Employees & Anti-Virus, Anti- Host
Correlation Monitoring Journaling Intelligence Risk Production Management Management Findings Strategy Anti- HIPS / Host HIPS /HIDS
Threat Contractors)
Spam, Anti-Malware Firewall
Assessments Data Session Authorization Authentication Application Network Computer
Virus HIDS Firewall
SOC Portal Management Events Events Events Events Events Media Hardware Based
Service Support
Events
Forensic Tools
Lockdown Trusted Assets
Managed Security Knowledge Branding Information Data
Network
Services Base Protection
Anti-Phishing
Service Support Service
Leakage
Metadata
Segregation
User Directory Services Firewall
Content
DPI
Inventory Control
Content
Filtering White Listing
HIPS NIPS Filtering
User Behavior & Configuration Events Events
Real-time internetwork defense (SCAP)
Profile Patterns Rules Transformation Services NIPS / Wireless
(Metadata)
Risk Management Active DBMS
NIDS Protection Application
Configuration Management Knowledge Database Directory
LDAP X.500
Repositories Link Layer Network Security XML Applicance Application Firewall Real
Privilege Repositories Repositories
Repository Events Services Meta Time
Software Usage Events
Legal Services Internal Investigations Capacity Planning
Management
Physical Inventory Configuration
Management
GRC RA BIA Directory
Black Listing Filtering Secure Messaging Secure Collaboration Filtering
Forensic e-Mail Virtual Services
Contracts E-Discovery Automated Asset Configuration Database Registry Location Federated
Analysis Journaling (CMDB) Change ACLs CRLs Compliance NIPS DLP eDiscovery Directory
Discovery Management DR & BC Services Services Services
Data Protection
VRA TVM Monitoring Events EVents
Incident Response Legal Logs Events Services
Plans
Preparation
Incident Management Problem Management Data lifecycle management
Automated Event Root Cause Meta Data Data
Security Incident Data Masking Data Tagging
Response Ticketing Classifiation Analysis Control De-Identification
Self-Service Ticketing
Trend
Analysis
Problem
Resolution Internal Infrastructure
Infrastructure Services Virtual Infrastructure
eSignature
(Unstructured data)
Life cycle
management
Data Obscuring Data Seeding
Cross Cloud Security Incident
Orphan Incident Management
Response
Facility Security Patch Servers Desktop “Client” Virtualization Storage Virtualization Data Leakage Prevention Intellectual Property
<<insert Jairo’s content>
Block-Based Virtualization Prevention
Knowledge Management Controlled Physical Asset
Management Local Session-
Remote
VM-Based Host-Based
Storage
Network-Based
Data Discovery
Intellectual Digital Rights
Based (VDI) LDM LVM Appliance
Network End-Point Server
Compliance Monitoring Secure Build Device-
Best Trend Security Job Security
Access Handling Image Management LUN Based Switched
(Data in Transit) (Data in Use) (Data at Rest) Property Management
Electronic Service Discovery
Benchmarking Barriers
practices Analysis Aids FAQ Surveillance Data
Security Patrols
Physical
Authentication Software
Hardware
Application Virtualization Virtual Cryptographic Services
Equipment Client
Application
Server
Application
Workspaces File-Based Virtualization Key Management PKI
Signature
Services
Data-in-use
Encryption (Memory)
Change Management Release Environmental Risk Management Streaming Streaming
Synchronous Asynchronous
Change Management Physical Security
Equipment Power Maintenance Keys Keys Data-in-Transit
Encryption
Data-at-Rest Encryption
(DB, File, SAN, Desktop,
Domain
Location Redundancy
Service Approval Mobile)
Review Server Virtualization Network Database (Transitory, Fixed)
SABSA Provisioning Workflow
Board
Scheduling
Virtual Machines (Hosted Based) Virtualizaton
Network Address
Virtualization
Testing Version
Container Storage Availability
Space
ITIL v3
Planned Changes
Build Control Network Full Paravirtualization Hardware-Assisted
Virtualization
IPv4 IPv6 Mobile Device
Project Operational
Emergency Virtualization
Policies and Standards
Process or Changes Chages
Changes Source Code
Management
Services Services Services OS TPM Virtual External Internal Operational Security Baselines Job Aid Guidelines Role Based Awareness
Solution
Data
TOGAF Network
Segementation
Authoritative
Time Source
VIrtualization Virtualization Memory
(VLAN) (VNIC)
Smartcard
Virtualization
Information Security
Policies
Technical Security
Standards
Data/Asset Classification
Best Practices &
Regulatory correlation
JERICHO
Chief Architect: Jairo Orea
Lead Architects: Marlin Pholman, Yaron Levi, Dan Logan.
Team: David Sherr, Richard Austin , Vern Williams, Anish Mohammed, Harel
Hadass, Phil Cox, Yale Li, Price Oden, Tuhin Kumar, Rajiv Mishra, Ravila White,
Scott Matsumoto, Rob Wilson, Charlton Barreto, Ryan Bagnulo, Subra
Kumaraswamy.
Date: 07/20/2011
Revision: 12th Review
You might also like
- Instruction Manual EA 3600 7200 10800 English 103Document148 pagesInstruction Manual EA 3600 7200 10800 English 103Stephany Sucerquia100% (2)
- Mcra December 2023Document68 pagesMcra December 2023nanoanxoNo ratings yet
- Microsoft Azure MapDocument1 pageMicrosoft Azure MapAlan GuilhermeNo ratings yet
- It Agile Enterprise Architecture Operating Model Phases 1 3Document193 pagesIt Agile Enterprise Architecture Operating Model Phases 1 3naveed100% (1)
- 16november2019 Palayan City Mango Growers AssociationDocument113 pages16november2019 Palayan City Mango Growers AssociationMarge Agero AngelesNo ratings yet
- Innovation Insight For The Cloud Center of ExcellenceDocument11 pagesInnovation Insight For The Cloud Center of ExcellenceVenkata NS Dhulipala100% (1)
- AWS Cloud Adoption PDFDocument32 pagesAWS Cloud Adoption PDFKsn100% (1)
- TOGAF 9 Template - Architecture RoadmapDocument7 pagesTOGAF 9 Template - Architecture RoadmapESOMCHI0% (1)
- Green Book Executive Overview PDFDocument20 pagesGreen Book Executive Overview PDFgahernanNo ratings yet
- Gartner It Score For Applications Sample ExcerptDocument8 pagesGartner It Score For Applications Sample ExcerptFernando Ferreira AguiarNo ratings yet
- LeanIX Playbook Using The Gartner TIME Framework For Application Rationalization ENDocument20 pagesLeanIX Playbook Using The Gartner TIME Framework For Application Rationalization ENJosh TownsendNo ratings yet
- SABSA Using Enterprise ArchitectDocument9 pagesSABSA Using Enterprise Architectmyrizwan807No ratings yet
- EA Maturity Assessment TemplateDocument8 pagesEA Maturity Assessment TemplateStephen OtiNo ratings yet
- Ultimate Infosec RACI MatrixDocument12 pagesUltimate Infosec RACI MatrixHimawan ReinaldyNo ratings yet
- LeanIX An Agile Framework To Implement TOGAF With LeanIX enDocument1 pageLeanIX An Agile Framework To Implement TOGAF With LeanIX enLarry LarsNo ratings yet
- Infographic 9 Steps Absolute Zero Trust SecurityDocument1 pageInfographic 9 Steps Absolute Zero Trust SecurityRodrigo Marques100% (1)
- SAM Process GuideDocument115 pagesSAM Process GuideAshuNo ratings yet
- Application Portfolio Assessment For Cloud Readiness Sample ReportDocument31 pagesApplication Portfolio Assessment For Cloud Readiness Sample ReportDeep PNo ratings yet
- Building A Security Operations Center: Randy Marchany VA Tech IT Security Office and Lab Marchany@vt - EduDocument28 pagesBuilding A Security Operations Center: Randy Marchany VA Tech IT Security Office and Lab Marchany@vt - EduAhmad Alafeef50% (2)
- Cloud Operations PlaybookDocument127 pagesCloud Operations PlaybookSantosh Kumar100% (1)
- leanIX - Eam BPM Integration Signavio - ENDocument8 pagesleanIX - Eam BPM Integration Signavio - ENPaul Vintimilla CarrascoNo ratings yet
- ArchiMate Reference CardsDocument14 pagesArchiMate Reference CardsJonathan CliftonNo ratings yet
- Cyber ScapeDocument1 pageCyber ScapeFernando Muñoz100% (1)
- LeanIX Whitepaper Nine Key Use Cases Solved With EADocument15 pagesLeanIX Whitepaper Nine Key Use Cases Solved With EAEduardo ManchegoNo ratings yet
- Building A Scalable ArchitectureDocument46 pagesBuilding A Scalable ArchitecturegoodpiNo ratings yet
- A Comprehensive Approach To Application Portfolio Rationalization PDFDocument8 pagesA Comprehensive Approach To Application Portfolio Rationalization PDFAditya Trivedi100% (1)
- Azure Sentinel Workshop: Partner Overview DeckDocument17 pagesAzure Sentinel Workshop: Partner Overview Decklfi91509 zslsz100% (1)
- The Architecture Development Method: Personal PDF EditionDocument18 pagesThe Architecture Development Method: Personal PDF Editionkumar100% (1)
- TOGAF ADM Software ToolDocument15 pagesTOGAF ADM Software ToolCurtis TsangNo ratings yet
- Enterprise Architecture Financial Sector PDFDocument19 pagesEnterprise Architecture Financial Sector PDFcogalde100% (1)
- Integrating Security Across SDLC PhasesDocument14 pagesIntegrating Security Across SDLC PhasesJavved100% (1)
- IZO Cloud Platform & Services Sales PlaybookDocument55 pagesIZO Cloud Platform & Services Sales PlaybookKrishnaNo ratings yet
- Deloitte Enterprise Network Security Architecture EvolutionDocument10 pagesDeloitte Enterprise Network Security Architecture Evolutionnguyentrannaman0904No ratings yet
- Blockchain-An-Executive-View Wbfeg Res Eng 1120Document15 pagesBlockchain-An-Executive-View Wbfeg Res Eng 1120Sheen JoNo ratings yet
- Taipei GEAF MinisetDocument22 pagesTaipei GEAF MinisetPhilip ZhengNo ratings yet
- Jordan E-Government Enterprise Architecture: ReservedDocument51 pagesJordan E-Government Enterprise Architecture: ReservedArturo Rafael RoqueNo ratings yet
- Enterprise Architecture AssessmentDocument16 pagesEnterprise Architecture Assessmentsurbhi13ankur17No ratings yet
- A Governance Model For Cloud ComputingDocument6 pagesA Governance Model For Cloud ComputingLalith KartikeyaNo ratings yet
- L. - Definition Security ArchitectureDocument8 pagesL. - Definition Security ArchitectureCarlos VegaNo ratings yet
- Gartner ReprintDocument33 pagesGartner ReprintluissimsicNo ratings yet
- Multicloud StrategyDocument28 pagesMulticloud StrategyVikas ShahNo ratings yet
- Attack SurfaceDocument28 pagesAttack SurfacesureshshagliNo ratings yet
- 7 Gartner Critical Capabilitie 774374Document34 pages7 Gartner Critical Capabilitie 774374joao.lucas.ribeiroNo ratings yet
- Enterprise Architecture of SaFEDocument12 pagesEnterprise Architecture of SaFEOzy KaneNo ratings yet
- IT4IT Reference Card1Document1 pageIT4IT Reference Card1GuillermoVillalonNo ratings yet
- New Brunswick Enterprise Architecture ManualDocument108 pagesNew Brunswick Enterprise Architecture ManualMichael DavidsonNo ratings yet
- Gartner APM MQDocument28 pagesGartner APM MQDan Barliba100% (1)
- AR - New EA Playbook - 2020 UpdateDocument19 pagesAR - New EA Playbook - 2020 UpdatecnazarethNo ratings yet
- COBIT Focus 4 Steps To Integrate IT and Corporate Governance NLT Eng 1214Document11 pagesCOBIT Focus 4 Steps To Integrate IT and Corporate Governance NLT Eng 1214KirischNo ratings yet
- Kyndryl 2023-Gartner MMS MagicQ Briefing Deck Final VFDocument32 pagesKyndryl 2023-Gartner MMS MagicQ Briefing Deck Final VFMartin OliverosNo ratings yet
- Enterprise ArchitectureDocument12 pagesEnterprise Architectureandre.zingra100% (1)
- TOGAF IntroAndPrelim v0.1Document42 pagesTOGAF IntroAndPrelim v0.1SantanuNo ratings yet
- Architecturing The Cloud PDFDocument49 pagesArchitecturing The Cloud PDFnpnbkckNo ratings yet
- Bimodal - Raising Everyone's Game For Digital BusinessDocument32 pagesBimodal - Raising Everyone's Game For Digital BusinessMiguel SanchezNo ratings yet
- Continuous Oversight in The CloudDocument18 pagesContinuous Oversight in The CloudWalter Felipe LicuananNo ratings yet
- 11 Architecture Review Board CharterDocument9 pages11 Architecture Review Board CharterMuhammad Ammad100% (2)
- Enterprise Cloud GovernanceDocument14 pagesEnterprise Cloud GovernanceSyed Saleem100% (1)
- TOGAF Poster # 123 - Managing Architecture Views and Viewpoints (Goodelearning)Document1 pageTOGAF Poster # 123 - Managing Architecture Views and Viewpoints (Goodelearning)pranavvikasNo ratings yet
- TSI SW100 Cyber Security How SABSA Can Help Your Business 1Document5 pagesTSI SW100 Cyber Security How SABSA Can Help Your Business 1koernjNo ratings yet
- Azure Security Compass v1.1 - PresentationDocument111 pagesAzure Security Compass v1.1 - PresentationÁkos KinczelNo ratings yet
- Solution Architecture Review Blueprint Preparation TemplateDocument15 pagesSolution Architecture Review Blueprint Preparation TemplateFoxman2kNo ratings yet
- Enterprise Architecture Metrics A Clear and Concise ReferenceFrom EverandEnterprise Architecture Metrics A Clear and Concise ReferenceNo ratings yet
- Hanwha Corporation Trade IntroductionDocument19 pagesHanwha Corporation Trade IntroductionArchil GogorishviliNo ratings yet
- Leqciata Kursi Matematikur Logikasi Da Diskretul maTematikaSiDocument110 pagesLeqciata Kursi Matematikur Logikasi Da Diskretul maTematikaSiArchil GogorishviliNo ratings yet
- OpenFace: An Open Source Facial Behavior Analysis ToolkitDocument10 pagesOpenFace: An Open Source Facial Behavior Analysis ToolkitArchil GogorishviliNo ratings yet
- MVS Coding StandardsDocument4 pagesMVS Coding StandardsArchil GogorishviliNo ratings yet
- Hand Crafting SensorsDocument50 pagesHand Crafting SensorsArchil GogorishviliNo ratings yet
- 6040z Usb GuideDocument14 pages6040z Usb GuideArchil GogorishviliNo ratings yet
- DotLoop Single Sign OnDocument9 pagesDotLoop Single Sign OnArchil GogorishviliNo ratings yet
- 6040 Usb Software InstallDocument7 pages6040 Usb Software InstallArchil GogorishviliNo ratings yet
- USB MACH3 Install and SettingDocument4 pagesUSB MACH3 Install and SettingArchil GogorishviliNo ratings yet
- Creamy Alugbati Con Quezo QuicheDocument50 pagesCreamy Alugbati Con Quezo QuicheAntonio Miguel DizonNo ratings yet
- Chapter 3 - Concept Questions and ExercisesDocument3 pagesChapter 3 - Concept Questions and ExercisesAnh TramNo ratings yet
- Bengali MADocument8 pagesBengali MAamithasan3456No ratings yet
- TB03Document6 pagesTB03mzamza110No ratings yet
- Ring The Alarm! - PreviewDocument34 pagesRing The Alarm! - PreviewNikolai Pizarro de JesusNo ratings yet
- List Major Muscles Involved in Respiration (Inspiration and Expiration) at Rest and During ExerciseDocument5 pagesList Major Muscles Involved in Respiration (Inspiration and Expiration) at Rest and During ExerciseEmMa DHieyahNo ratings yet
- Situational LeadershipDocument9 pagesSituational LeadershiprengelbertNo ratings yet
- AziyatDocument7 pagesAziyatASHFAQ AHMADNo ratings yet
- Pathway 37Document25 pagesPathway 37sr.mushtaq1No ratings yet
- ACRMV - FundamentalDesignConceptDocument230 pagesACRMV - FundamentalDesignConceptannaaisyNo ratings yet
- Anchor Text Guidance: Grade 8, Module 1: Folklore of Latin AmericaDocument6 pagesAnchor Text Guidance: Grade 8, Module 1: Folklore of Latin AmericaHannahNo ratings yet
- LC46 52d82uDocument222 pagesLC46 52d82uDíaz Rivero Cesar EnriqueNo ratings yet
- Fired HeatersDocument12 pagesFired HeatersSaleem ChohanNo ratings yet
- Cloning A Eukaryotic Gene in A Bacterial PlasmidDocument11 pagesCloning A Eukaryotic Gene in A Bacterial PlasmidRoselet ApiñadoNo ratings yet
- Edarabia ADEC Al Hamdanya Grand Private School 2015 2016 PDFDocument16 pagesEdarabia ADEC Al Hamdanya Grand Private School 2015 2016 PDFEdarabia.comNo ratings yet
- What Henri Bedros Kifa Claims About Assyrians & Arameans ImpliesDocument8 pagesWhat Henri Bedros Kifa Claims About Assyrians & Arameans ImpliesArameanFactsNo ratings yet
- Final Assure Model Lesson PlanDocument15 pagesFinal Assure Model Lesson Planjoyren bangayNo ratings yet
- Experiment #4 Discharge Through An Orifice MeterDocument6 pagesExperiment #4 Discharge Through An Orifice MeterEddy KimathiNo ratings yet
- 1 SMDocument18 pages1 SMEklesiaUmbohNo ratings yet
- Alex Syrup View Uses, Side Effects, Price and Substitutes 1mgDocument1 pageAlex Syrup View Uses, Side Effects, Price and Substitutes 1mgabhiNo ratings yet
- 8 de Noviembre de 2022Document7 pages8 de Noviembre de 2022Manuel OrtizNo ratings yet
- Republic of The Philippines Camarines Sur Polytechnic CollegesDocument32 pagesRepublic of The Philippines Camarines Sur Polytechnic CollegesGenevive Tayamora Taway-RosNo ratings yet
- Instant Download Mooncakes Suzanne Walker Et El PDF All ChaptersDocument52 pagesInstant Download Mooncakes Suzanne Walker Et El PDF All Chaptersmulroyyonese100% (4)
- Nammcesa 000022 PDFDocument4,766 pagesNammcesa 000022 PDFBasel Osama RaafatNo ratings yet
- Oracle Business Intelligence Foundation Suite 11g Essentials Exam Study GuideDocument27 pagesOracle Business Intelligence Foundation Suite 11g Essentials Exam Study Guidekaushik4endNo ratings yet
- W.S. Anglin - Mathematics - A Concise History and PhilosophyDocument272 pagesW.S. Anglin - Mathematics - A Concise History and Philosophyclasesunisucre.danielNo ratings yet
- Santali SchoolbookDocument46 pagesSantali SchoolbookANWESH PATINo ratings yet
- 1.0 Design Andheri Khola Bridge, 1x25m 8.4m 3 GirderDocument18 pages1.0 Design Andheri Khola Bridge, 1x25m 8.4m 3 GirderManoj ChaudharyNo ratings yet