Comprehensive approach of the TAS3 architecture and framework achieves real and tangible overall security and trustworthiness gains when compared with state of the art for multiplayer networks of comparable size. TAS3 features that contribute to this are
Legal concerns are built-in from the ground up
A comprehensive and strong digitally signed audit trail
A conditionally pseudonymous audit trail to guarantee the privacy of Users who play by the rules, while allowing abuse to be exposed through collaboration of Service Providers.
A fully pseudonymous design at all layers to protect user privacy
Fully encrypted and digitally signed messages using strong algorithms
Based on state-of-the-art Single Sign-On protocol standard (SAML 2.0) which has had extensive security review
Extensive security review and scrutiny already done
Multiple commercial and open source implementations that are mature.
Certification program for implementations further ensures quality
Based on state-of-the-art Identity Web Service Protocol standards (ID-WSF 2.0) which have had extensive security review
Extensive security review and scrutiny already done
Multiple commercial and open source implementations
Certification program for implementations further ensures quality
Enhanced authorization infrastructure which significantly improves upon the current XACMLv2 standard
Extensive security review and scrutiny already done
Multiple commercial and open source implementations
Ability to use risk control and reputation
Use of ontologies to ensure consistent interpretation of data and authorization rules
On-line Compliance Testing for early detection of discrepancies and problems
Business Process Modelling driven configuration to ensure consistently correct configuration
TAS3 has performed a systematic threat analysis (see Annex F) to ensure that the architecture addresses the widest possible range of security and privacy threats.
Software engineering techniques used by the project to consistently achieve high quality and absence of security bugs in the software components that are TAS3 deliverables.
TAS3 Architecture is novel as a blueprint that brings together identity management, attribute based access control, business process modelling, and dynamic trust. The architecture, with Annex A, acts as an interoperability profile for various standards based protocols covering these areas. Other areas of innovation are user transparency features like Dashboard, user accessible audit trail, and automated compliance validation; privacy protection using sticky policies; marriage of trust and privacy Negotiation with discovery and trust scoring; secure dynamic business processes; and built-in first class support for delegation.