diff --git a/.gitmodules b/.gitmodules
index ee13fdd74..de50b2432 100644
--- a/.gitmodules
+++ b/.gitmodules
@@ -236,3 +236,9 @@
[submodule "security/trusted-issuers-registry"]
path = security/trusted-issuers-registry
url = https://github.com/FIWARE/trusted-issuers-registry
+[submodule "security/anubis"]
+ path = security/anubis
+ url = https://github.com/orchestracities/anubis
+[submodule "core/mintaka"]
+ path = core/mintaka
+ url = https://github.com/FIWARE/mintaka
diff --git a/README.md b/README.md
index 7f8580cf8..016cf172a 100644
--- a/README.md
+++ b/README.md
@@ -162,6 +162,8 @@ Accompanying a Context Broker component as part of Core Context Management, a nu
The following is a list of Generic Enablers under incubation within the area of Core Data Connectors systems:
+- [Mintaka](https://github.com/FIWARE/mintakas) is an add-on to the [Orion-LD Context Broker](https://github.com/FIWARE/context.Orion-LD) providing an
+ implementation of the NGSI-LD temporal retrieval API.
- The [Canis Major](https://github.com/fiware/CanisMajor) Generic Enabler is a blockchain adaptor that supports
various DLTs, the adaptor aims to submit the data to DLT using FIWARE Technologies
- The [NGSI.js Library](https://github.com/ficodes/ngsijs) provides a series of JavaScript functions allowing
@@ -323,6 +325,8 @@ The following is a list of Generic Enablers under incubation within the area of
[SCIM v1.1](https://developer.okta.com/docs/reference/scim/scim-11/) standard
- [Keystone SPASSWORD](https://github.com/telefonicaid/fiware-keystone-spassword) is an OpenStack Keystone extension
that enables extra security checks over user passwords
+- [Anubis](https://github.com/orchestracities/anubis) is an RBAC Policy Execution Point that makes easier to reuse security
+ policies across different services
- [Trusted Issuers List Service](https://github.com/FIWARE/trusted-issuers-list) provides an EBSI Trusted Issuers Registry
implementation to act as the Trusted-List-Service in the DSBA Trust and IAM Framework.
- [DSBA PDP](https://github.com/FIWARE/dsba-pdp) is a Policy-Desicion Point, evaluating Json-Web-Tokens
diff --git a/core/mintaka b/core/mintaka
new file mode 160000
index 000000000..b74c31f4a
--- /dev/null
+++ b/core/mintaka
@@ -0,0 +1 @@
+Subproject commit b74c31f4a4c61fa2839a45e9d31422e61ba344cf
diff --git a/security/README.md b/security/README.md
index 3e1244f4e..3fed45db1 100644
--- a/security/README.md
+++ b/security/README.md
@@ -164,7 +164,7 @@ these federated networks, or data spaces.
-| :octocat: [Git Repository](https://github.com/telefonicaid/fiware-pep-steelskin) | :whale: [Docker Hub](https://hub.docker.com/r/telefonicaiot/fiware-pep-steelskin) | :books: [Documentation](https://github.com/telefonicaid/fiware-pep-steelskin#README.md) |
+| :octocat: [Git Repository](https://github.com/telefonicaid/fiware-pep-steelskin) | 
[quay.io](https://quay.io/repository/fiware/pep-steelskin) | :books: [Documentation](https://github.com/telefonicaid/fiware-pep-steelskin#README.md) |
| -------------------------------------------------------------------------------- | --------------------------------------------------------------------------------- | --------------------------------------------------------------------------------------- |
@@ -197,7 +197,7 @@ secured resource itself.
-| :octocat: [Git Repository](https://github.com/telefonicaid/fiware-keypass) | :whale: [Docker Hub](https://hub.docker.com/r/telefonicaiot/fiware-keypass) | :books: [Documentation](telefonicaid/fiware-keypass#readme.md) |
+| :octocat: [Git Repository](https://github.com/telefonicaid/fiware-keypass) | [quay.io](https://quay.io/repository/fiware/keypass) | :books: [Documentation](telefonicaid/fiware-keypass#readme.md) |
| -------------------------------------------------------------------------- | --------------------------------------------------------------------------- | -------------------------------------------------------------- |
@@ -247,7 +247,7 @@ running Keystone installation and enhance the functionality of it.
-| :octocat: [Git Repository](https://github.com/telefonicaid/fiware-keystone-spassword) | :whale: [Docker Hub](https://hub.docker.com/r/telefonicaiot/fiware-keystone-spassword) | :books: [Documentation](https://github.com/telefonicaid/fiware-keystone-spassword/README.md) |
+| :octocat: [Git Repository](https://github.com/telefonicaid/fiware-keystone-spassword) | [quay.io](https://quay.io/repository/fiware/keystone-spassword) | :books: [Documentation](https://github.com/telefonicaid/fiware-keystone-spassword/README.md) |
| ------------------------------------------------------------------------------------- | -------------------------------------------------------------------------------------- | -------------------------------------------------------------------------------------------- |
@@ -262,6 +262,38 @@ account became temporarily blocked, a recover procedure password, a second facto
Additional security checks and features improve the security and usability of a system, SPASSWORD helps to reduce
development time by avoiding the need to implement and test bespoke secure system functions.
+
+
+## :seedling: Anubis (Incubated)
+
+[](./README.md)
+
+
+
+
+| :octocat: [Git Repository](https://github.com/telefonicaid/fiware-keypass) | [quay.io](https://quay.io/repository/fiware/anubis)| :books: [Documentation](telefonicaid/fiware-keypass#readme.md) |
+| -------------------------------------------------------------------------- | --------------------------------------------------------------------------- | -------------------------------------------------------------- |
+
+
+### What is Anubis?
+
+Anubis is a flexible Policy Enforcement solution that makes easier to reuse security policies across different services, assuming the policies entail the same resource. In short we are dealing with policy portability.
+
+### Why use Anubis?
+
+Data portability often focuses on the mechanisms to exchange data and the formalisation of data representation: the emphasis is rarely put on the portability of security & privacy data policies. Enabling security and privacy data policy portability is clearly a step forward in enabling data sovereignty across different services.
+
+This project aims at enabling data sovereignty by introducing data privacy and security policy portability and prototyping distributed data privacy and security policy management, thus contributing to increase trust toward data sharing APIs and platforms.
+
+Approaches as the one proposed, increasing control by owners over their data and portability of data assets, are key to boost the establishment of trusted data spaces.
+
+The project is looking into
+
+- Open standardized security & privacy data policies vocabulary.
+Linking an existing user profiling vocabulary to the security & privacy data policies vocabulary as a way to increase portability of policies and their compatibility to existing standards.
+- A middleware supporting decentralised control and audit of security & privacy data policies by data owners (in the context of RESTful APIs).
+- Translation from the security & privacy data policies vocabulary to other policy languages or APIs that are actually used for PEP.
+
## :seedling: Trusted Issuers List Service (Incubated)
diff --git a/security/anubis b/security/anubis
new file mode 160000
index 000000000..a0c0a57e4
--- /dev/null
+++ b/security/anubis
@@ -0,0 +1 @@
+Subproject commit a0c0a57e4db8df51621ab7eb5ef3f74d3b3de24e