The increasing awareness for responsible usage of security measures while exchanging digital information, leads to new and further development of security standards and tools. In this day and age loose handling of sensitive personal data could be judged as an infringement of the GDPR (in german: DSGVO) and will be punished. In the past few years, flaws inside information systems, again and again led to large amounts of private user data being accessed by unauthorized third parties. Due to this fact, the idea to create and develop a de-perimeterized data exchange tool was born by Mrs Nisreen Alam Aldeen. De-perimeterization is the protection of a resource within the aid of encryption mechanisms across system boundaries. The following work first deals with the subject area of security in information systems and proposes a newly developed tool for a secure exchange of information based on theoretical principles and current technologies. Our proposed and developed application is the so-called Enhanced self-protecting information technology system or short eSprint. It provides a text editor with a graphical interface and advanced security mechanisms. eSprint is based on the encryption technologies RSA (developed by Rivest, Shamir and Adleman) and AES (Advanced Encryption Standard). The core themes of this work are the definition and the usage of an extension of the x.509 standard. As a central communication element the proposed extension enables the user to create a de-perimeterized document with individual and continuous access control, which can be adapted and modified by the creator at any time. The aim of this work is to prove the technical implementability of the theoretical considerations and to develop a working prototype.
Masterprüfung mit Defensio, Pollak Patrik und Wesenauer Thomas
26.09.2018 10:00 - 11:30
Organiser:
SPL 5
Location: