Skip to main content

Alignment with Digital Public Goods Principles

DiCRA is designed in alignment with the principles established by the Digital Public Goods Alliance (DPGA), which promotes open-source digital solutions that are interoperable, inclusive, and aligned with the Sustainable Development Goals (SDGs).

As part of this alignment:

Open-Source Licensing: DiCRA operates under recognized open-source licensing frameworks (such as MIT, Apache 2.0, or GPL), ensuring that the source code remains publicly accessible, reusable, and auditable.

Open Standards & Interoperability: The platform follows open standards and API-first architecture, enabling seamless integration with government systems, private-sector platforms, and climate-data ecosystems.

Do No Harm Commitment: Ethical safeguards are embedded within the platform’s governance and technical architecture to prevent misuse, bias, or discriminatory outcomes.

Transparency & Documentation: Technical documentation, deployment guidelines, APIs, and governance processes are maintained to support transparency and replicability.

Collaborative Development Model: DiCRA supports structured community contributions through version control systems, issue tracking, and peer-reviewed updates.

Security Standards and Secure Development Practices

Security is integrated throughout DiCRA’s development lifecycle to ensure confidentiality, integrity, and availability of data and services.

  • Secure Development Lifecycle (SDLC): Security considerations are incorporated from system design through deployment and maintenance.

  • Code Audits & Vulnerability Management: Periodic security reviews, vulnerability assessments, and penetration testing are conducted to identify and mitigate risks.

  • Encryption & Data Protection:

    • Data in transit is secured using HTTPS/TLS protocols.

    • Data at rest is protected using industry-standard encryption mechanisms.

  • Access Control & Authentication: Role-Based Access Control (RBAC), secure API authentication (OAuth2/token-based systems), and multi-factor authentication (where applicable) are implemented.

  • Infrastructure Security: Hosting environments follow best practices in network security, patch management, firewall configuration, and intrusion monitoring.

  • Logging & Monitoring: Continuous logging and audit trails are maintained to enable real-time monitoring and incident response.

Governance, Sustainability & Continuous Compliance

DiCRA follows a transparent governance framework to ensure long-term sustainability and compliance with Digital Public Goods standards.

This includes structured version control, change management processes, public roadmap tracking, and periodic compliance reviews. The platform remains committed to continuous improvement, community engagement, and responsible digital innovation.