10,831 research outputs found
Leveraging Secure Multiparty Computation in the Internet of Things
Centralized systems in the Internet of Things---be it local middleware or
cloud-based services---fail to fundamentally address privacy of the collected
data. We propose an architecture featuring secure multiparty computation at its
core in order to realize data processing systems which already incorporate
support for privacy protection in the architecture
Systematizing Decentralization and Privacy: Lessons from 15 Years of Research and Deployments
Decentralized systems are a subset of distributed systems where multiple
authorities control different components and no authority is fully trusted by
all. This implies that any component in a decentralized system is potentially
adversarial. We revise fifteen years of research on decentralization and
privacy, and provide an overview of key systems, as well as key insights for
designers of future systems. We show that decentralized designs can enhance
privacy, integrity, and availability but also require careful trade-offs in
terms of system complexity, properties provided, and degree of
decentralization. These trade-offs need to be understood and navigated by
designers. We argue that a combination of insights from cryptography,
distributed systems, and mechanism design, aligned with the development of
adequate incentives, are necessary to build scalable and successful
privacy-preserving decentralized systems
Personalizable Service Discovery in Pervasive Systems
Today, telecom providers are facing changing challenges.
To stay ahead in the competition and provide market
leading offerings, carriers need to enable a global ecosystem of
third party independent application developers to deliver converged
services. This is the aim of leveraging a open standardsbased
service delivery platform. To identify and to cope with
those challenges is the main target of the EU funded project
IST DAIDALOS II. And a central point to satisfy the changing
user needs is the provision of a well working, user friendly and
personalized service discovery. This paper describes our work
in the project on a middleware in a framework for pervasive
service usage. We have designed an architecture for it, that
enables full transparency to the user, grants high compatibility
and extendability by a modular and pluggable conception and
allows for interoperability with most known service discovery
protocols. Our Multi-Protocol Service Discovery and the Four
Phases Service Filtering concept enabling personalization should
allow for the best possible results in service discovery
My private cloud--granting federated access to cloud resources
We describe the research undertaken in the six month JISC/EPSRC funded My Private Cloud project, in which we built a demonstration cloud file storage service that allows users to login to it, by using their existing credentials from a configured trusted identity provider. Once authenticated, users are shown a set of accounts that they are the owners of, based on their identity attributes. Once users open one of their accounts, they can upload and download files to it. Not only that, but they can then grant access to their file resources to anyone else in the federated system, regardless of whether their chosen delegate has used the cloud service before or not. The system uses standard identity management protocols, attribute based access controls, and a delegation service. A set of APIs have been defined for the authentication, authorisation and delegation processes, and the software has been released as open source to the community. A public demonstration of the system is available online
Decentralized Identities for Self-sovereign End-users (DISSENS)
This paper describes a comprehensive architecture and reference implementation for privacy-preserving identity management that bucks the trend towards centralization present in contemporary proposals. DISSENS integrates a technology stack which combines privacy-friendly online payments with self-sovereign personal data management using a decentralized directory service. This enables users to be in complete control of their digital identity and personal information while at the same time being able to selectively share information necessary to easily use commercial services. Our pilot demonstrates the viability of a sustainable, user-centric, standards-compliant and accessible use case for public service employees and students in the domain of retail e-commerce.
We leverage innovative technologies including self-sovereign identity, privacy credentials, and privacy-friendly digital payments in combination with established standards to provide easy-to-adapt templates for the integration of various scenarios and use cases
- âŠ