tl_files/isl/skidentity.jpg Project: SkIDentity 
Project Duration: 01.01.2012 to 31.12.2013
Project Mngt.: Prof. Dr. Gerrit Hornung
   

Information: SkIDentity safeguards against identity theft in the cloud. The SkIDentity project will build a bridge between safe electronic identification badges in chip card form or the new identity card (eID) and the booming market of cloud computing infrastructures. The objective is to provide trustworthy identities for the cloud in order to better protect all kinds of business processes for users and companies. To get a comprehensive, legally compliant, economically worthwile and highly safe identity infrastructure for the clould, components, services and reliable infrastructures already exising and to be developed will be integrated and tested in large scale pilot projects. more
tl_files/isl_logos_andere/logo websand.png
 Project: WebSand
(Server-driven Outbound Web-application Sandboxing)
Project Duration: 01.10.2010 to 30.09.2013
Project Mngt.: Prof. Dr. Joachim Posegga / Prof. Dr. Dirk Heckmann
   
Information: Since its birth in 1990, the Web has evolved from a simple, stateless delivery mechanism for static hypertext documents to a fully-edged run-time environment for distributed, multi-party applications. Security becomes increasingly important in this context, but is typically only an afterthought in this process. The next wave, the Future Internet, will continue to rely on the same web application technology, while adopting more distributed (Peer-to-Peer and mashup-style) approaches. Today's server-centric solutions will give way to a rich client-centric paradigm with even less manageable security and even more severe threats to the web-based economy of the Future Internet. Data and services from multiple heterogeneous domains, aggregated both on the server-side and on an end-user's client, demand for a novel, comprehensive security solution that increases the user's trust into the technological infrastructure. WebSand tackles this demand by departing from the observation that security should be server-driven. Even though security preferences from end-users at the client-side have to be taken into account, only the service developers at the server-side have the necessary expertise and context information to define the policies to be enforced. Moreover, server-driven security can be deployed relatively easily, since much can be achieved without updating the client-side platform. The WebSand framework consists of four major building blocks: (1) a secure interaction model, that allows explicit and fine-grained control concerning incoming Web communication, (2) methods for secure end-to-end information flow control, to enforce confidentiality and integrity properties, (3) behavioral sandbox environments for secure client-side and server-side composition of multi-origin components, and (4) a declarative and expressive policy description mechanism that ties the individual components together into a unified security architecture spanning client and server. more
tl_files/isl_logos_andere/RescueIT_Logo.png Project: RESCUE IT
Robustes und vErfügbares SCM - UntErstützende IT-Plattform
Project Duration: 01.04.2010 to 31.03.2013
Project Mngt.: Prof. Dr. Joachim Posegga / Prof. Dr. Dirk Heckmann
   
Information: The motivation for RESCUE IT is our always increasing dependency on robust supply chains. Whether dairy products (like milk or joghurt) or other sensitive goods - the process from production to delivery is increasing in complexity and in the number of involved parties. Today's supply chains are handled by complex IT and communication systems, their robustness against errors must be increased to meet our society's demands for an uninterrupted supply stream.RESCUE IT will be adressing the whole error range from sabotage of production, risks during transport, attacks on the underlying IT-Infrastructure to targeted attacks on the quality and loss of consumability of goods in the wholesale sector. The research is scenario-driven and will be conducted together with industry partners, SCM software developers, and universities. [more]
tl_files/isl_logos_andere/efre.gif Project: EFRE - Europäischer Fond für regionale Entwicklung
Project Duration: 01.07.2009 – 30.06.2015
Project Mngt.: Prof. Dr. De Meer
   
Information: The European Fund for Regional Development (EFRE) supports the expansion of the competence partnership IT-Security between Passau and Regensburg. The complete region East Bavaria is included and will have long-term benefits from the activities. [more]