Resource efficiency, privacy and security by design: A first experience on enterprise servers and data storage products triggered by a policy process. Issue 76 (July 2018)
- Record Type:
- Journal Article
- Title:
- Resource efficiency, privacy and security by design: A first experience on enterprise servers and data storage products triggered by a policy process. Issue 76 (July 2018)
- Main Title:
- Resource efficiency, privacy and security by design: A first experience on enterprise servers and data storage products triggered by a policy process
- Authors:
- Polverini, D.
Ardente, F.
Sanchez, I.
Mathieux, F.
Tecchio, P.
Beslay, L. - Abstract:
- Highlights: Environmental performances, data protection and security are jointly analysed for ICT products. A bottom-up approach has been applied to the case study of enterprise servers and data storage products. Research outcomes contributed to the EU Ecodesign Directive policy process. The proposed requirements can improve resource efficiency and privacy/cybersecurity. Synergies between environmental impact minimisation and data protection and security have been illustrated. Abstract: Decreasing the environmental impacts of Information and Communication Technologies (ICT) devices, whilst at the same time contributing to ensure the data protection and cybersecurity of devices and infrastructure, could seem, at first sight, a difficult challenge. By means of a bottom-up approach, we show with scientific evidences that policy actions at product level have the potential to solve the apparent conundrum. The research is based on a case study related to the implementation of the European Union Ecodesign Directive to enterprise servers and data storage devices. The article proposes a novel approach to combine resource efficiency and data protection and cybersecurity issues, taking a preventative "by design" focus. This is built on the identification and subsequent proposal of solutions of the relevant market failures, i.e. situations in which the allocation of goods and services on a market is not efficient. Potential solutions are then translated into potential EcodesignHighlights: Environmental performances, data protection and security are jointly analysed for ICT products. A bottom-up approach has been applied to the case study of enterprise servers and data storage products. Research outcomes contributed to the EU Ecodesign Directive policy process. The proposed requirements can improve resource efficiency and privacy/cybersecurity. Synergies between environmental impact minimisation and data protection and security have been illustrated. Abstract: Decreasing the environmental impacts of Information and Communication Technologies (ICT) devices, whilst at the same time contributing to ensure the data protection and cybersecurity of devices and infrastructure, could seem, at first sight, a difficult challenge. By means of a bottom-up approach, we show with scientific evidences that policy actions at product level have the potential to solve the apparent conundrum. The research is based on a case study related to the implementation of the European Union Ecodesign Directive to enterprise servers and data storage devices. The article proposes a novel approach to combine resource efficiency and data protection and cybersecurity issues, taking a preventative "by design" focus. This is built on the identification and subsequent proposal of solutions of the relevant market failures, i.e. situations in which the allocation of goods and services on a market is not efficient. Potential solutions are then translated into potential Ecodesign requirements for enterprise servers concerning: provision of information on the operation at high temperatures; availability of secure data deletion functionalities; availability of firmware updates to third parties; and design for disassembly of the product. We qualitatively and quantitatively assessed these requirements, in terms of energy and greenhouse gases emission savings, improved reusability, waste reduction, improved protection of personal data and security of the devices. The article concludes that a synergy between the environmental impact and the data protection and cybersecurity of these products – and the systems where they are installed (i.e. the data centres) – can be successfully achieved. Although the research work focused on a specific case study, the paper discusses finally how a similar approach could be applied to several other product groups characterised by similar market failures. … (more)
- Is Part Of:
- Computers & security. Issue 76(2018)
- Journal:
- Computers & security
- Issue:
- Issue 76(2018)
- Issue Display:
- Volume 76, Issue 76 (2018)
- Year:
- 2018
- Volume:
- 76
- Issue:
- 76
- Issue Sort Value:
- 2018-0076-0076-0000
- Page Start:
- 295
- Page End:
- 310
- Publication Date:
- 2018-07
- Subjects:
- Enterprise servers -- Resource and energy efficiency -- Privacy -- Cybersecurity -- Data protection -- Ecodesign requirement -- Reuse
Computer security -- Periodicals
Electronic data processing departments -- Security measures -- Periodicals
005.805 - Journal URLs:
- http://www.sciencedirect.com/science/journal/01674048 ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.cose.2017.12.001 ↗
- Languages:
- English
- ISSNs:
- 0167-4048
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 3394.781000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 7236.xml