Prof. Dr.-Ing. Dr. h.c. mult. Paul J. Kühn
University of Stuttgart
Institute of Communication Networks and Computer Engineering
Pfaffenwaldring 47
D 70569 Stuttgart
Tel. +49 (0)711 685-8027
Fax +49 (0)711 685-7983
mail@ikr.uni-stuttgart.de
Overview
New platforms like Nexus always bear new threats besides possibly known problems. The goal of this project is to evaluate the platform regarding its specific threats and to develop mechanisms allowing multilateral security regarding users, operators and service providers. The system's innovation relevant from a security point of view are spatial models and the multitude of operators.
The spatial model is a huge collection of data in which users participate actively and passively. They are providing data actively and are represented in the models at the same time. By these representations in correlation with the diversity of information contained in the models, profiles of a user can be built which is against the users privacy preferences.
Moreover, considering the multitude of operators and providers, protection goals of serving entities can be threatened by the need to process data of unknown sources. As the platform has an open architecture, everybody can provide data and therefore be an information source. This data can be of different quality and even contradicting. Here, the user has the problem do evaluate the data regarding its suitability for further processing. Besides the data's origin, trust in the information source is important.
Often, protection mechanisms regarding one problem influence other problems negatively, e.g., anonymization of data complicates evaluation of its origin.
In this project, threats are analyzed including their correlations and protection mechanisms are developed. During the development of the mechanisms, usability of the system and its scalability as well as its performance must be considered.
The following tasks are performed:
Model of Services and Trust
The goal of this task is a model of attributes, which are relevant from the security point of view, of users, services and their trust relations. This model serves as basis for the following tasks and is used for the analysis of security needs of other projects.
Privacy
The goal of this task is the development of privacy mechanisms under consideration of other parties' security needs. To a achieve this, an infrastructure for the use of pseudonyms is developed. This infrastructure is evaluated regarding linkability of pseudonyms as well as its costs.
Model of Services and Trust
In this task, mechanisms are invented to give users the possibility of a rating of information sources from a trust point of view. Information of different sources can be combined whereas statements of different sources have different weights. Moreover, the user's trust in different sources should be able to be communicated to services combining information on behalf of the user. In this case, the influence of the different sources should be indicated to the user.
Institute
People
|
