SlideShare ist ein Scribd-Unternehmen logo

Building multi-services in personal mobile devices based on partially trusted domains

Miguel Pardal
Miguel Pardal
Technologie
1 von 17
Downloaden Sie, um offline zu lesen
IADIS e-Society 2004 Lisbon Portugal Building multi-services in personal mobile devices based on partially trusted domains Miguel Pardal (mflpar@yahoo.co.uk) Alberto Cunha (alberto.cunha@inesc.pt) July 19th 2004
Overview • Personal devices • Self-contained services – Examples • Multi-services – Opportunities • Work in progress – Pilot implementation 2004-07-19 Building multi-services on partially trusted domains 2
Personal devices • Examples: – Smart card – Mobile phone – PDA • Enable information access anywhere – With little effort – At reasonable cost • Can make service delivery more effective 2004-07-19 Building multi-services on partially trusted domains 3
Service delivery model • Device-based service – The user has a device that can be used in a terminal – Data networks support information flows with business servers 2004-07-19 Building multi-services on partially trusted domains 4
Service examples • Transport tickets • Automated banking • Mobile communication • Health card • Public identification • Etc. 2004-07-19 Building multi-services on partially trusted domains 5 …
Service components Service Supervising User Device Terminal Infrastructure organization Magnetic stripe ATM Secure private Bank(s) Automated card network banking Bank servers Mobile SIM Card Mobile Cellular Network Network communication phone Back-end servers operator Smart-card Point-of- Transport network Transport sale authority Transportation Entry point 2004-07-19 Building multi-services on partially trusted domains 6
Service examples • Transport tickets • Automated banking • Mobile communication • Health card • Public identification • Etc. 2004-07-19 Building multi-services on partially trusted domains 7
Selected subset of services • Main requirements: – Valuable – Large scale and widespread – Fast interactions • To satisfy these requirements economically: – Distributed architecture – Almost-never-connected to remote servers • Security must be enforced on local interactions – Consistency checked later 2004-07-19 Building multi-services on partially trusted domains 8
Self-contained service • The service typically: – Belongs to a single business area – Has specific devices, terminals and infrastructure – Has a supervising organization to ensure trust • Strengths – Standard design and technology • Weaknesses – ‘One device per service’ – Difficult to extend beyond their original use 2004-07-19 Building multi-services on partially trusted domains 9
New value approach • Improve services – Customers • Same device for multiple services • More convenience and other potential benefits – Ex. discounts – Service providers • Reach customers through new channels – Supervising organizations • Increase infrastructure return-on-investment 2004-07-19 Building multi-services on partially trusted domains 10
Multi-services • Compose different self-contained services – Ex. device level or terminal level • Aiming for more open and dynamic services – Assume only partial trust – Support restricted information and functionality sharing 2004-07-19 Building multi-services on partially trusted domains 11
Our goal • Develop models and tools to produce technical assurances that allow organizations to establish the partial trust relationship between them to deliver the service 2004-07-19 Building multi-services on partially trusted domains 12
Related work • Multi-application interoperability – Standard application frameworks for cards or other devices • Security assurance mechanisms • Auditing • Device certification – Hardware – Software 2004-07-19 Building multi-services on partially trusted domains 13
Pilot implementation • Identify benefits and limitations of approach • Use of payment network to load new tickets in secure transport card – Transport operator does not give up control of its security keys for ticket loading to the payment service provider 2004-07-19 Building multi-services on partially trusted domains 14
Pilot approach 2004-07-19 Building multi-services on partially trusted domains 15
Why partial trust? • There are already examples of combined services: – Co-branded credit cards • However, they’re managed by a single dominant organization, fully trusted by all business partners – In this sense, they’re not much different from self- contained services! • True multi-services entail only partial trust – Existing approaches assume a total trust domain – We want to make trust explicit in models and tools 2004-07-19 Building multi-services on partially trusted domains 16
Questions & Answers “Going from an issuer card to a user card…” In (Zóreda and Otón, 1994) “(The device is) their electronic Identity, their reliable key to e-services”. In OSCIE vol. 3-5, eEurope Smart Cards, 2003 Thank you! Miguel Pardal mflpar@yahoo.co.uk 2004-07-19 Building multi-services on partially trusted domains 17

Empfohlen

Core mechanisms for Web Services extensions
Core mechanisms for Web Services extensionsCore mechanisms for Web Services extensions
Core mechanisms for Web Services extensionsMiguel Pardal
 
Exset company overview3
Exset company overview3Exset company overview3
Exset company overview3Alexandr Khil
 
Fibertech Overview 10 1 2011
Fibertech Overview 10 1 2011Fibertech Overview 10 1 2011
Fibertech Overview 10 1 2011tmanter
 
Fibertech Networks Overview
Fibertech Networks OverviewFibertech Networks Overview
Fibertech Networks Overviewtmanter
 
Mns Product Portfolio 050610b (2)
Mns Product Portfolio 050610b (2)Mns Product Portfolio 050610b (2)
Mns Product Portfolio 050610b (2)AngieTocco
 
Investor presentation december 2011
Investor presentation december 2011Investor presentation december 2011
Investor presentation december 2011Satyawan Jangra
 
Network Infrastructure Virtualization Case Study
Network Infrastructure Virtualization Case StudyNetwork Infrastructure Virtualization Case Study
Network Infrastructure Virtualization Case StudyCisco Canada
 
ABSS Comprehensive
ABSS ComprehensiveABSS Comprehensive
ABSS ComprehensiveChris Keaton
 

Empfohlen

Core mechanisms for Web Services extensions
Core mechanisms for Web Services extensionsCore mechanisms for Web Services extensions
Core mechanisms for Web Services extensionsMiguel Pardal
 
Exset company overview3
Exset company overview3Exset company overview3
Exset company overview3Alexandr Khil
 
Fibertech Overview 10 1 2011
Fibertech Overview 10 1 2011Fibertech Overview 10 1 2011
Fibertech Overview 10 1 2011tmanter
 
Fibertech Networks Overview
Fibertech Networks OverviewFibertech Networks Overview
Fibertech Networks Overviewtmanter
 
Mns Product Portfolio 050610b (2)
Mns Product Portfolio 050610b (2)Mns Product Portfolio 050610b (2)
Mns Product Portfolio 050610b (2)AngieTocco
 
Investor presentation december 2011
Investor presentation december 2011Investor presentation december 2011
Investor presentation december 2011Satyawan Jangra
 
Network Infrastructure Virtualization Case Study
Network Infrastructure Virtualization Case StudyNetwork Infrastructure Virtualization Case Study
Network Infrastructure Virtualization Case StudyCisco Canada
 
ABSS Comprehensive
ABSS ComprehensiveABSS Comprehensive
ABSS ComprehensiveChris Keaton
 
offload
offload offload
offloadxingbei
 
Broadview Networks Site Seller R2011
Broadview Networks Site Seller R2011Broadview Networks Site Seller R2011
Broadview Networks Site Seller R2011dshetterly
 
Welcome to Level(3)
Welcome to Level(3)Welcome to Level(3)
Welcome to Level(3)djpuccio
 
Developing a Comprehensive Carrier Ethernet Business Portfolio
Developing a Comprehensive Carrier Ethernet Business PortfolioDeveloping a Comprehensive Carrier Ethernet Business Portfolio
Developing a Comprehensive Carrier Ethernet Business PortfolioKuncoro Wastuwibowo
 
Total Network Solutions
Total Network SolutionsTotal Network Solutions
Total Network SolutionsTata Communications
 
From Telkom for IYCE Award Candidates
From Telkom for IYCE Award CandidatesFrom Telkom for IYCE Award Candidates
From Telkom for IYCE Award CandidatesKuncoro Wastuwibowo
 
Bw Overview 0607
Bw Overview 0607Bw Overview 0607
Bw Overview 0607fantastic1
 
Smallworld_Network_Inventory_Brochure_-_print-HR_with_bleed_for_printers_0
Smallworld_Network_Inventory_Brochure_-_print-HR_with_bleed_for_printers_0Smallworld_Network_Inventory_Brochure_-_print-HR_with_bleed_for_printers_0
Smallworld_Network_Inventory_Brochure_-_print-HR_with_bleed_for_printers_0Mitchell Menezes
 
1vc.tv approach for securuty vertical
1vc.tv approach for securuty vertical1vc.tv approach for securuty vertical
1vc.tv approach for securuty verticalVMukti Solutions Pvt. Ltd.
 
NSN / Samsung Brusknet PR
NSN / Samsung Brusknet PRNSN / Samsung Brusknet PR
NSN / Samsung Brusknet PRnaeemmirza
 
Gtt Overview
Gtt OverviewGtt Overview
Gtt Overviewbigshowbrandon
 
Cdn prospects 2011
Cdn prospects 2011Cdn prospects 2011
Cdn prospects 2011Dr.Joko Suryana
 
Ch08
Ch08Ch08
Ch08Ali Khawaja
 
ABSS Essentials
ABSS EssentialsABSS Essentials
ABSS EssentialsChris Keaton
 
"End-to-end Interoperability and Mobile Services"
"End-to-end Interoperability and Mobile Services" "End-to-end Interoperability and Mobile Services"
"End-to-end Interoperability and Mobile Services" John Loughney
 
Rubik Financial - Introduction- March 2012
Rubik Financial - Introduction- March 2012Rubik Financial - Introduction- March 2012
Rubik Financial - Introduction- March 2012Shelf Companies Aust
 
CORE2AFRICA 4page Brochure
CORE2AFRICA 4page BrochureCORE2AFRICA 4page Brochure
CORE2AFRICA 4page BrochureNigel Van Tura
 
The Case for WiFi: Optimizing Your Network for Mobile Commerce
The Case for WiFi: Optimizing Your Network for Mobile CommerceThe Case for WiFi: Optimizing Your Network for Mobile Commerce
The Case for WiFi: Optimizing Your Network for Mobile CommerceCradlePoint
 
Corporate Products & Network
Corporate Products & NetworkCorporate Products & Network
Corporate Products & NetworkSalmanSK
 
Hp Sdp Evolution
Hp Sdp EvolutionHp Sdp Evolution
Hp Sdp EvolutionMarie-Paule Odini
 
Next genits closing_event
Next genits closing_eventNext genits closing_event
Next genits closing_eventimec.archive
 
Mobile Authentication on the Internet
Mobile Authentication on the InternetMobile Authentication on the Internet
Mobile Authentication on the Internetevidos
 

Weitere ähnliche Inhalte

Was ist angesagt?

offload
offload offload
offloadxingbei
 
Broadview Networks Site Seller R2011
Broadview Networks Site Seller R2011Broadview Networks Site Seller R2011
Broadview Networks Site Seller R2011dshetterly
 
Welcome to Level(3)
Welcome to Level(3)Welcome to Level(3)
Welcome to Level(3)djpuccio
 
Developing a Comprehensive Carrier Ethernet Business Portfolio
Developing a Comprehensive Carrier Ethernet Business PortfolioDeveloping a Comprehensive Carrier Ethernet Business Portfolio
Developing a Comprehensive Carrier Ethernet Business PortfolioKuncoro Wastuwibowo
 
From Telkom for IYCE Award Candidates
From Telkom for IYCE Award CandidatesFrom Telkom for IYCE Award Candidates
From Telkom for IYCE Award CandidatesKuncoro Wastuwibowo
 
Bw Overview 0607
Bw Overview 0607Bw Overview 0607
Bw Overview 0607fantastic1
 
Smallworld_Network_Inventory_Brochure_-_print-HR_with_bleed_for_printers_0
Smallworld_Network_Inventory_Brochure_-_print-HR_with_bleed_for_printers_0Smallworld_Network_Inventory_Brochure_-_print-HR_with_bleed_for_printers_0
Smallworld_Network_Inventory_Brochure_-_print-HR_with_bleed_for_printers_0Mitchell Menezes
 
NSN / Samsung Brusknet PR
NSN / Samsung Brusknet PRNSN / Samsung Brusknet PR
NSN / Samsung Brusknet PRnaeemmirza
 
"End-to-end Interoperability and Mobile Services"
"End-to-end Interoperability and Mobile Services" "End-to-end Interoperability and Mobile Services"
"End-to-end Interoperability and Mobile Services" John Loughney
 
Rubik Financial - Introduction- March 2012
Rubik Financial - Introduction- March 2012Rubik Financial - Introduction- March 2012
Rubik Financial - Introduction- March 2012Shelf Companies Aust
 
CORE2AFRICA 4page Brochure
CORE2AFRICA 4page BrochureCORE2AFRICA 4page Brochure
CORE2AFRICA 4page BrochureNigel Van Tura
 
The Case for WiFi: Optimizing Your Network for Mobile Commerce
The Case for WiFi: Optimizing Your Network for Mobile CommerceThe Case for WiFi: Optimizing Your Network for Mobile Commerce
The Case for WiFi: Optimizing Your Network for Mobile CommerceCradlePoint
 
Corporate Products & Network
Corporate Products & NetworkCorporate Products & Network
Corporate Products & NetworkSalmanSK
 

Was ist angesagt? (20)

offload
offload offload
offload
 
Broadview Networks Site Seller R2011
Broadview Networks Site Seller R2011Broadview Networks Site Seller R2011
Broadview Networks Site Seller R2011
 
Welcome to Level(3)
Welcome to Level(3)Welcome to Level(3)
Welcome to Level(3)
 
Developing a Comprehensive Carrier Ethernet Business Portfolio
Developing a Comprehensive Carrier Ethernet Business PortfolioDeveloping a Comprehensive Carrier Ethernet Business Portfolio
Developing a Comprehensive Carrier Ethernet Business Portfolio
 
Total Network Solutions
Total Network SolutionsTotal Network Solutions
Total Network Solutions
 
From Telkom for IYCE Award Candidates
From Telkom for IYCE Award CandidatesFrom Telkom for IYCE Award Candidates
From Telkom for IYCE Award Candidates
 
Bw Overview 0607
Bw Overview 0607Bw Overview 0607
Bw Overview 0607
 
Smallworld_Network_Inventory_Brochure_-_print-HR_with_bleed_for_printers_0
Smallworld_Network_Inventory_Brochure_-_print-HR_with_bleed_for_printers_0Smallworld_Network_Inventory_Brochure_-_print-HR_with_bleed_for_printers_0
Smallworld_Network_Inventory_Brochure_-_print-HR_with_bleed_for_printers_0
 
1vc.tv approach for securuty vertical
1vc.tv approach for securuty vertical1vc.tv approach for securuty vertical
1vc.tv approach for securuty vertical
 
NSN / Samsung Brusknet PR
NSN / Samsung Brusknet PRNSN / Samsung Brusknet PR
NSN / Samsung Brusknet PR
 
Gtt Overview
Gtt OverviewGtt Overview
Gtt Overview
 
Cdn prospects 2011
Cdn prospects 2011Cdn prospects 2011
Cdn prospects 2011
 
Ch08
Ch08Ch08
Ch08
 
ABSS Essentials
ABSS EssentialsABSS Essentials
ABSS Essentials
 
"End-to-end Interoperability and Mobile Services"
"End-to-end Interoperability and Mobile Services" "End-to-end Interoperability and Mobile Services"
"End-to-end Interoperability and Mobile Services"
 
Rubik Financial - Introduction- March 2012
Rubik Financial - Introduction- March 2012Rubik Financial - Introduction- March 2012
Rubik Financial - Introduction- March 2012
 
CORE2AFRICA 4page Brochure
CORE2AFRICA 4page BrochureCORE2AFRICA 4page Brochure
CORE2AFRICA 4page Brochure
 
The Case for WiFi: Optimizing Your Network for Mobile Commerce
The Case for WiFi: Optimizing Your Network for Mobile CommerceThe Case for WiFi: Optimizing Your Network for Mobile Commerce
The Case for WiFi: Optimizing Your Network for Mobile Commerce
 
Corporate Products & Network
Corporate Products & NetworkCorporate Products & Network
Corporate Products & Network
 
Hp Sdp Evolution
Hp Sdp EvolutionHp Sdp Evolution
Hp Sdp Evolution
 

Ähnlich wie Building multi-services in personal mobile devices based on partially trusted domains

Next genits closing_event
Next genits closing_eventNext genits closing_event
Next genits closing_eventimec.archive
 
Mobile Authentication on the Internet
Mobile Authentication on the InternetMobile Authentication on the Internet
Mobile Authentication on the Internetevidos
 
Creating a smarter world with eSIM
Creating a smarter world with eSIMCreating a smarter world with eSIM
Creating a smarter world with eSIMJT IoT
 
SeeMoto - Sensors As A Service
SeeMoto - Sensors As A ServiceSeeMoto - Sensors As A Service
SeeMoto - Sensors As A ServiceMarko Kyrölä
 
Mobile WiMAX drives speed to market for 4G networks By Data Sharan Mishra, Qtel
Mobile WiMAX drives speed to market for 4G networks By Data Sharan Mishra, QtelMobile WiMAX drives speed to market for 4G networks By Data Sharan Mishra, Qtel
Mobile WiMAX drives speed to market for 4G networks By Data Sharan Mishra, QtelUntil ROI
 
The Hague Tech Conference - Impact of Networks & Comms on Smart Cities
The Hague Tech Conference - Impact of Networks & Comms on Smart CitiesThe Hague Tech Conference - Impact of Networks & Comms on Smart Cities
The Hague Tech Conference - Impact of Networks & Comms on Smart CitiesDean Bubley
 
FIDO & The Mobile Network Operator - Goode Intelligence & Nok Nok Labs
FIDO & The Mobile Network Operator - Goode Intelligence & Nok Nok LabsFIDO & The Mobile Network Operator - Goode Intelligence & Nok Nok Labs
FIDO & The Mobile Network Operator - Goode Intelligence & Nok Nok LabsNok Nok Labs, Inc
 
EarthLink Business mpls overview
EarthLink Business mpls overviewEarthLink Business mpls overview
EarthLink Business mpls overviewRoss McVey
 
EarthLink Business Corporate Overview pres 6 13-11
EarthLink Business Corporate Overview pres 6 13-11 EarthLink Business Corporate Overview pres 6 13-11
EarthLink Business Corporate Overview pres 6 13-11 denisweickert
 
OpenID Connect: The Mobile Profile
OpenID Connect: The Mobile ProfileOpenID Connect: The Mobile Profile
OpenID Connect: The Mobile ProfileBjorn Hjelm
 
Integrating Anonymous Credentials with eIDs for Privacy-respecting Online Au...
Integrating Anonymous Credentials with eIDs for Privacy-respecting Online Au...Integrating Anonymous Credentials with eIDs for Privacy-respecting Online Au...
Integrating Anonymous Credentials with eIDs for Privacy-respecting Online Au...Ioannis Krontiris
 
TADS Telecom Summit Huawei Mac Taylor
TADS Telecom Summit Huawei Mac TaylorTADS Telecom Summit Huawei Mac Taylor
TADS Telecom Summit Huawei Mac TaylorAlan Quayle
 
Verso IoT experience – What have we learned from implementations all over the...
Verso IoT experience – What have we learned from implementations all over the...Verso IoT experience – What have we learned from implementations all over the...
Verso IoT experience – What have we learned from implementations all over the...Bosnia Agile
 
7.2 gsm-association-fraud-forum
7.2 gsm-association-fraud-forum7.2 gsm-association-fraud-forum
7.2 gsm-association-fraud-forumkkvences
 
Why Collaborate? Graham Nicholls, Extrada Inc.
Why Collaborate? Graham Nicholls, Extrada Inc.Why Collaborate? Graham Nicholls, Extrada Inc.
Why Collaborate? Graham Nicholls, Extrada Inc.mfrancis
 
OpenID Foundation Workshop at EIC2017
OpenID Foundation Workshop at EIC2017OpenID Foundation Workshop at EIC2017
OpenID Foundation Workshop at EIC2017Bjorn Hjelm
 
End-to-End and e-Business Value from the Telematics Reference Implementation ...
End-to-End and e-Business Value from the Telematics Reference Implementation ...End-to-End and e-Business Value from the Telematics Reference Implementation ...
End-to-End and e-Business Value from the Telematics Reference Implementation ...mfrancis
 
Future of m commerce
Future of m commerceFuture of m commerce
Future of m commerceAlok Gupta
 

Ähnlich wie Building multi-services in personal mobile devices based on partially trusted domains (20)

Next genits closing_event
Next genits closing_eventNext genits closing_event
Next genits closing_event
 
Mobile Authentication on the Internet
Mobile Authentication on the InternetMobile Authentication on the Internet
Mobile Authentication on the Internet
 
Sedlacek, Dostal
Sedlacek, DostalSedlacek, Dostal
Sedlacek, Dostal
 
Creating a smarter world with eSIM
Creating a smarter world with eSIMCreating a smarter world with eSIM
Creating a smarter world with eSIM
 
SeeMoto - Sensors As A Service
SeeMoto - Sensors As A ServiceSeeMoto - Sensors As A Service
SeeMoto - Sensors As A Service
 
Mobile WiMAX drives speed to market for 4G networks By Data Sharan Mishra, Qtel
Mobile WiMAX drives speed to market for 4G networks By Data Sharan Mishra, QtelMobile WiMAX drives speed to market for 4G networks By Data Sharan Mishra, Qtel
Mobile WiMAX drives speed to market for 4G networks By Data Sharan Mishra, Qtel
 
The Hague Tech Conference - Impact of Networks & Comms on Smart Cities
The Hague Tech Conference - Impact of Networks & Comms on Smart CitiesThe Hague Tech Conference - Impact of Networks & Comms on Smart Cities
The Hague Tech Conference - Impact of Networks & Comms on Smart Cities
 
FIDO & The Mobile Network Operator - Goode Intelligence & Nok Nok Labs
FIDO & The Mobile Network Operator - Goode Intelligence & Nok Nok LabsFIDO & The Mobile Network Operator - Goode Intelligence & Nok Nok Labs
FIDO & The Mobile Network Operator - Goode Intelligence & Nok Nok Labs
 
EarthLink Business mpls overview
EarthLink Business mpls overviewEarthLink Business mpls overview
EarthLink Business mpls overview
 
EarthLink Business Corporate Overview pres 6 13-11
EarthLink Business Corporate Overview pres 6 13-11 EarthLink Business Corporate Overview pres 6 13-11
EarthLink Business Corporate Overview pres 6 13-11
 
OpenID Connect: The Mobile Profile
OpenID Connect: The Mobile ProfileOpenID Connect: The Mobile Profile
OpenID Connect: The Mobile Profile
 
2012 Accumulate Mobile Everywhere Introduction
2012 Accumulate Mobile Everywhere Introduction2012 Accumulate Mobile Everywhere Introduction
2012 Accumulate Mobile Everywhere Introduction
 
Integrating Anonymous Credentials with eIDs for Privacy-respecting Online Au...
Integrating Anonymous Credentials with eIDs for Privacy-respecting Online Au...Integrating Anonymous Credentials with eIDs for Privacy-respecting Online Au...
Integrating Anonymous Credentials with eIDs for Privacy-respecting Online Au...
 
TADS Telecom Summit Huawei Mac Taylor
TADS Telecom Summit Huawei Mac TaylorTADS Telecom Summit Huawei Mac Taylor
TADS Telecom Summit Huawei Mac Taylor
 
Verso IoT experience – What have we learned from implementations all over the...
Verso IoT experience – What have we learned from implementations all over the...Verso IoT experience – What have we learned from implementations all over the...
Verso IoT experience – What have we learned from implementations all over the...
 
7.2 gsm-association-fraud-forum
7.2 gsm-association-fraud-forum7.2 gsm-association-fraud-forum
7.2 gsm-association-fraud-forum
 
Why Collaborate? Graham Nicholls, Extrada Inc.
Why Collaborate? Graham Nicholls, Extrada Inc.Why Collaborate? Graham Nicholls, Extrada Inc.
Why Collaborate? Graham Nicholls, Extrada Inc.
 
OpenID Foundation Workshop at EIC2017
OpenID Foundation Workshop at EIC2017OpenID Foundation Workshop at EIC2017
OpenID Foundation Workshop at EIC2017
 
End-to-End and e-Business Value from the Telematics Reference Implementation ...
End-to-End and e-Business Value from the Telematics Reference Implementation ...End-to-End and e-Business Value from the Telematics Reference Implementation ...
End-to-End and e-Business Value from the Telematics Reference Implementation ...
 
Future of m commerce
Future of m commerceFuture of m commerce
Future of m commerce
 

Mehr von Miguel Pardal

Master Beginners Workshop - Feb 2023
Master Beginners Workshop - Feb 2023Master Beginners Workshop - Feb 2023
Master Beginners Workshop - Feb 2023Miguel Pardal
 
Master Beginners Workshop - September 2019
Master Beginners Workshop - September 2019Master Beginners Workshop - September 2019
Master Beginners Workshop - September 2019Miguel Pardal
 
SafeCloud Secure Communication solutions (WP1 overview)
SafeCloud Secure Communication solutions (WP1 overview)SafeCloud Secure Communication solutions (WP1 overview)
SafeCloud Secure Communication solutions (WP1 overview)Miguel Pardal
 
Master Beginners' Workshop September 2018
Master Beginners' Workshop September 2018Master Beginners' Workshop September 2018
Master Beginners' Workshop September 2018Miguel Pardal
 
IoT Middleware for Precision Agriculture: workforce monitoring in olive fields
IoT Middleware for Precision Agriculture: workforce monitoring in olive fieldsIoT Middleware for Precision Agriculture: workforce monitoring in olive fields
IoT Middleware for Precision Agriculture: workforce monitoring in olive fieldsMiguel Pardal
 
Rastreabilidade na Internet das (muitas) Coisas
Rastreabilidade na Internet das (muitas) CoisasRastreabilidade na Internet das (muitas) Coisas
Rastreabilidade na Internet das (muitas) CoisasMiguel Pardal
 
Vulnerability-tolerant Transport Layer Security
Vulnerability-tolerant Transport Layer SecurityVulnerability-tolerant Transport Layer Security
Vulnerability-tolerant Transport Layer SecurityMiguel Pardal
 
Arranque Seguro de Redes 6LoWPAN para prevenir Ataques Vampiro na Internet da...
Arranque Seguro de Redes 6LoWPAN para prevenir Ataques Vampiro na Internet da...Arranque Seguro de Redes 6LoWPAN para prevenir Ataques Vampiro na Internet da...
Arranque Seguro de Redes 6LoWPAN para prevenir Ataques Vampiro na Internet da...Miguel Pardal
 
Precision Agriculture with Sensors and Technologies from the Internet of Things
Precision Agriculture with Sensors and Technologies from the Internet of ThingsPrecision Agriculture with Sensors and Technologies from the Internet of Things
Precision Agriculture with Sensors and Technologies from the Internet of ThingsMiguel Pardal
 
Smart Places INForum16 presentation
Smart Places INForum16 presentationSmart Places INForum16 presentation
Smart Places INForum16 presentationMiguel Pardal
 
Eclipse workshop presentation (March 2016)
Eclipse workshop presentation (March 2016)Eclipse workshop presentation (March 2016)
Eclipse workshop presentation (March 2016)Miguel Pardal
 
LaTeX workshop (NEB)
LaTeX workshop (NEB)LaTeX workshop (NEB)
LaTeX workshop (NEB)Miguel Pardal
 
Thesis for beginners 2015-10
Thesis for beginners 2015-10Thesis for beginners 2015-10
Thesis for beginners 2015-10Miguel Pardal
 
LaTeX workshop (JEQ)
LaTeX workshop (JEQ)LaTeX workshop (JEQ)
LaTeX workshop (JEQ)Miguel Pardal
 
Thesis for beginners
Thesis for beginnersThesis for beginners
Thesis for beginnersMiguel Pardal
 
Scalable and secure RFID data discovery
Scalable and secure RFID data discoveryScalable and secure RFID data discovery
Scalable and secure RFID data discoveryMiguel Pardal
 
Breve introdução à investigação
Breve introdução à investigaçãoBreve introdução à investigação
Breve introdução à investigaçãoMiguel Pardal
 
Eclipse workshop presentation
Eclipse workshop presentationEclipse workshop presentation
Eclipse workshop presentationMiguel Pardal
 
BEST Lisboa 2013 - The Internet of Things class
BEST Lisboa 2013 - The Internet of Things classBEST Lisboa 2013 - The Internet of Things class
BEST Lisboa 2013 - The Internet of Things classMiguel Pardal
 

Mehr von Miguel Pardal (20)

Master Beginners Workshop - Feb 2023
Master Beginners Workshop - Feb 2023Master Beginners Workshop - Feb 2023
Master Beginners Workshop - Feb 2023
 
Master Beginners Workshop - September 2019
Master Beginners Workshop - September 2019Master Beginners Workshop - September 2019
Master Beginners Workshop - September 2019
 
SafeCloud Secure Communication solutions (WP1 overview)
SafeCloud Secure Communication solutions (WP1 overview)SafeCloud Secure Communication solutions (WP1 overview)
SafeCloud Secure Communication solutions (WP1 overview)
 
Master Beginners' Workshop September 2018
Master Beginners' Workshop September 2018Master Beginners' Workshop September 2018
Master Beginners' Workshop September 2018
 
IoT Middleware for Precision Agriculture: workforce monitoring in olive fields
IoT Middleware for Precision Agriculture: workforce monitoring in olive fieldsIoT Middleware for Precision Agriculture: workforce monitoring in olive fields
IoT Middleware for Precision Agriculture: workforce monitoring in olive fields
 
Rastreabilidade na Internet das (muitas) Coisas
Rastreabilidade na Internet das (muitas) CoisasRastreabilidade na Internet das (muitas) Coisas
Rastreabilidade na Internet das (muitas) Coisas
 
Vulnerability-tolerant Transport Layer Security
Vulnerability-tolerant Transport Layer SecurityVulnerability-tolerant Transport Layer Security
Vulnerability-tolerant Transport Layer Security
 
Master Beginners
Master BeginnersMaster Beginners
Master Beginners
 
Arranque Seguro de Redes 6LoWPAN para prevenir Ataques Vampiro na Internet da...
Arranque Seguro de Redes 6LoWPAN para prevenir Ataques Vampiro na Internet da...Arranque Seguro de Redes 6LoWPAN para prevenir Ataques Vampiro na Internet da...
Arranque Seguro de Redes 6LoWPAN para prevenir Ataques Vampiro na Internet da...
 
Precision Agriculture with Sensors and Technologies from the Internet of Things
Precision Agriculture with Sensors and Technologies from the Internet of ThingsPrecision Agriculture with Sensors and Technologies from the Internet of Things
Precision Agriculture with Sensors and Technologies from the Internet of Things
 
Smart Places INForum16 presentation
Smart Places INForum16 presentationSmart Places INForum16 presentation
Smart Places INForum16 presentation
 
Eclipse workshop presentation (March 2016)
Eclipse workshop presentation (March 2016)Eclipse workshop presentation (March 2016)
Eclipse workshop presentation (March 2016)
 
LaTeX workshop (NEB)
LaTeX workshop (NEB)LaTeX workshop (NEB)
LaTeX workshop (NEB)
 
Thesis for beginners 2015-10
Thesis for beginners 2015-10Thesis for beginners 2015-10
Thesis for beginners 2015-10
 
LaTeX workshop (JEQ)
LaTeX workshop (JEQ)LaTeX workshop (JEQ)
LaTeX workshop (JEQ)
 
Thesis for beginners
Thesis for beginnersThesis for beginners
Thesis for beginners
 
Scalable and secure RFID data discovery
Scalable and secure RFID data discoveryScalable and secure RFID data discovery
Scalable and secure RFID data discovery
 
Breve introdução à investigação
Breve introdução à investigaçãoBreve introdução à investigação
Breve introdução à investigação
 
Eclipse workshop presentation
Eclipse workshop presentationEclipse workshop presentation
Eclipse workshop presentation
 
BEST Lisboa 2013 - The Internet of Things class
BEST Lisboa 2013 - The Internet of Things classBEST Lisboa 2013 - The Internet of Things class
BEST Lisboa 2013 - The Internet of Things class
 

Kürzlich hochgeladen

DevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenDevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenHervé Boutemy
 
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...Fwdays
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek SchlawackFwdays
 
DSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine TuningDSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine TuningLars Bell
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfAddepto
 
Artificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptxArtificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptxhariprasad279825
 
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
Take control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteTake control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteDianaGray10
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024Lorenzo Miniero
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLScyllaDB
 
Commit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyCommit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyAlfredo García Lavilla
 
Advanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionAdvanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionDilum Bandara
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfAlex Barbosa Coqueiro
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):comworks
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsRizwan Syed
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.Curtis Poe
 
Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 365Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 3652toLead Limited
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxLoriGlavin3
 

Kürzlich hochgeladen (20)

DevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenDevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache Maven
 
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
 
DSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine TuningDSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine Tuning
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdf
 
Artificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptxArtificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptx
 
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
 
Take control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteTake control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test Suite
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQL
 
Commit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyCommit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easy
 
Advanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionAdvanced Computer Architecture – An Introduction
Advanced Computer Architecture – An Introduction
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdf
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL Certs
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.
 
Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 365Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 365
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
 

Building multi-services in personal mobile devices based on partially trusted domains

  • 1. IADIS e-Society 2004 Lisbon Portugal Building multi-services in personal mobile devices based on partially trusted domains Miguel Pardal (mflpar@yahoo.co.uk) Alberto Cunha (alberto.cunha@inesc.pt) July 19th 2004
  • 2. Overview • Personal devices • Self-contained services – Examples • Multi-services – Opportunities • Work in progress – Pilot implementation 2004-07-19 Building multi-services on partially trusted domains 2
  • 3. Personal devices • Examples: – Smart card – Mobile phone – PDA • Enable information access anywhere – With little effort – At reasonable cost • Can make service delivery more effective 2004-07-19 Building multi-services on partially trusted domains 3
  • 4. Service delivery model • Device-based service – The user has a device that can be used in a terminal – Data networks support information flows with business servers 2004-07-19 Building multi-services on partially trusted domains 4
  • 5. Service examples • Transport tickets • Automated banking • Mobile communication • Health card • Public identification • Etc. 2004-07-19 Building multi-services on partially trusted domains 5 …
  • 6. Service components Service Supervising User Device Terminal Infrastructure organization Magnetic stripe ATM Secure private Bank(s) Automated card network banking Bank servers Mobile SIM Card Mobile Cellular Network Network communication phone Back-end servers operator Smart-card Point-of- Transport network Transport sale authority Transportation Entry point 2004-07-19 Building multi-services on partially trusted domains 6
  • 7. Service examples • Transport tickets • Automated banking • Mobile communication • Health card • Public identification • Etc. 2004-07-19 Building multi-services on partially trusted domains 7
  • 8. Selected subset of services • Main requirements: – Valuable – Large scale and widespread – Fast interactions • To satisfy these requirements economically: – Distributed architecture – Almost-never-connected to remote servers • Security must be enforced on local interactions – Consistency checked later 2004-07-19 Building multi-services on partially trusted domains 8
  • 9. Self-contained service • The service typically: – Belongs to a single business area – Has specific devices, terminals and infrastructure – Has a supervising organization to ensure trust • Strengths – Standard design and technology • Weaknesses – ‘One device per service’ – Difficult to extend beyond their original use 2004-07-19 Building multi-services on partially trusted domains 9
  • 10. New value approach • Improve services – Customers • Same device for multiple services • More convenience and other potential benefits – Ex. discounts – Service providers • Reach customers through new channels – Supervising organizations • Increase infrastructure return-on-investment 2004-07-19 Building multi-services on partially trusted domains 10
  • 11. Multi-services • Compose different self-contained services – Ex. device level or terminal level • Aiming for more open and dynamic services – Assume only partial trust – Support restricted information and functionality sharing 2004-07-19 Building multi-services on partially trusted domains 11
  • 12. Our goal • Develop models and tools to produce technical assurances that allow organizations to establish the partial trust relationship between them to deliver the service 2004-07-19 Building multi-services on partially trusted domains 12
  • 13. Related work • Multi-application interoperability – Standard application frameworks for cards or other devices • Security assurance mechanisms • Auditing • Device certification – Hardware – Software 2004-07-19 Building multi-services on partially trusted domains 13
  • 14. Pilot implementation • Identify benefits and limitations of approach • Use of payment network to load new tickets in secure transport card – Transport operator does not give up control of its security keys for ticket loading to the payment service provider 2004-07-19 Building multi-services on partially trusted domains 14
  • 15. Pilot approach 2004-07-19 Building multi-services on partially trusted domains 15
  • 16. Why partial trust? • There are already examples of combined services: – Co-branded credit cards • However, they’re managed by a single dominant organization, fully trusted by all business partners – In this sense, they’re not much different from self- contained services! • True multi-services entail only partial trust – Existing approaches assume a total trust domain – We want to make trust explicit in models and tools 2004-07-19 Building multi-services on partially trusted domains 16
  • 17. Questions & Answers “Going from an issuer card to a user card…” In (Zóreda and Otón, 1994) “(The device is) their electronic Identity, their reliable key to e-services”. In OSCIE vol. 3-5, eEurope Smart Cards, 2003 Thank you! Miguel Pardal mflpar@yahoo.co.uk 2004-07-19 Building multi-services on partially trusted domains 17