-
Datenschutz und Datensicherheit. 01/2007; 9.
-
[show abstract]
[hide abstract]
ABSTRACT: To enable trustworthy privacy, identity management has to be user-controlled, i.e. each user administrates his/her partial identities being supported by an identity management system running on his/her machines under his/her control. Past work on user-controlled identity management focused on isolated users administrating their partial identities mainly used towards organizations, e.g., shops, public administrations and the like. But users intensively interact with other users as well. Additionally, these interactions are not only direct, but indirect, too, as, e.g., within communities. A universally usable identity management meta-system (IMMS) will have to be able to handle and combine all interactions possible.For the sake of privacy, users interacting with organizations might minimize the personal information transmitted in the context of AAA (authentication, authorization, and accounting) without losing functionality. But users interacting with other users, in particular within a community, have to share additional supportive information, e.g., awareness information. Otherwise, neither a community nor team spirit will develop. Balancing privacy and functionality in communities is a current research question. Therefore, an IMMS has to be flexible enough to incorporate new knowledge and demands as they develop.
Information Security Technical Report (ISTR). 08/2006; 11:119-128.
-
01/2006: pages 83-91;
-
[show abstract]
[hide abstract]
ABSTRACT: Privacy-Enhancing Identity Management (PIM) enables users to control which personal information they provide to their communication partner(s) by partitioning their personal information into partial identities for themselves. Since partial identities must not be linkable, they cannot share a global name. Therefore, pseudonyms are used as identifiers. We discuss in this paper that besides the frequency of their use also the (re)presentation of pseudonyms influences the achievable privacy. Particularly, we point out that conflicting requirements on privacy and usability cannot be sufficiently considered by a single type of representation of pseudonyms. Hence, a PIM system should generate digital pseudonyms which are used for communication, while users assign local mnemonics to these pseudonyms in order to simplify their use. We discuss possible solutions for the support of mnemonics and, thereby, propose some improvements to privacy-enhancing identity management tools.
11/2005
-
[show abstract]
[hide abstract]
ABSTRACT: Current eLearning environments support a variety of tasks and, therefore, offer many advantages for their users. However, eLearning also implies privacy threats which are not necessarily obvious for developers and operators of eLearning environments as well as their users. The aim of this paper is to establish awareness of privacy threats introduced by eLearning. We point out the need for Privacy-Enhancing Identity Management (PIM) within eLearning and suggest a possible architecture for an eLearning system based on a privacy-enhancing identity management platform.
06/2005
-
[show abstract]
[hide abstract]
ABSTRACT: Identity Management enables users to control which personal information they provide to their communication partner(s): Users set up partial identities for themselves. Since partial identities must not be linkable, they cannot share a global name. Therefore, randomly generated pseudonyms are used as identifiers. We point out that besides the frequency of their use also the representation of pseudonyms to users influences the achievable privacy. Firstly, users will only use different pseudonyms and keep them apart if the pseudonyms have some easy to recognize representation. Secondly, humans generate names not randomly, but as a short-hand notation of the semantics. Consequently, the representation of pseudonyms will describe some important aspect of a partial identity. We discuss whether users could (or even should) be enabled to choose names for the pseudonyms and whether these names should be shared between different humans. As a result, we propose some improvements to privacy-enhancing identity management tools.
Heidelberg; 05/2005
-
[show abstract]
[hide abstract]
ABSTRACT: Neue Konzepte für datenschutzförderndes Identi-tätsmanagement stehen im Mittelpunkt des Projekts ?PRIME ? Privacy and Identity Management for Europe?. Das Projekt hat am 1. März 2004 begon-nen und läuft gefördert im 6. EU-Rahmenprogramm für vier Jahre. Ziel ist, Lösungen zu erforschen und zu entwickeln, die es Menschen ermöglichen, die Kontrolle über ihre Privatsphäre im Cyberspace in die eigene Hand zu nehmen. Dieser Artikel be-schreibt die Schwerpunkte der Forschung in PRIME. New concepts establishing Privacy-Enhancing Identity Management are the central points of the project ?PRIME ? Privacy and Identity Management for Europe?. The project was launched on March 1, 2004, and is funded by the 6th EU Framework Programme for four years. The primary objectives are research and development of solutions enabling the users to keep their privacy in cyberspace under their own control. This article describes the main focuses of research in PRIME.
it - Information Technology, Oldenbourg. 01/2005; 6:352-359.
-
[show abstract]
[hide abstract]
ABSTRACT: Supporting privacy in eLearning becomes a commonly admitted important issue when designing according infrastructures. This is motivated by a higher awareness of the users with respect to protecting their personal data. In particular, eLearning comprises many scenarios that clearly spell out risks to the users? privacy, such as communicating identifying data during classes. Nevertheless, current research activities primarily concentrate on non-collaborative eLearning. While those approaches neglect the direct communication of users, they address the protection of indirect misuse of the data. In contrast, we describe a concept, which is prototypically being realized in the eLearning platform BluES. It aims at as much latitude for the users acting in the collaborative environment as possible ? but nevertheless at protecting their personal information. The approach?s objectives are to support the users in managing their learning processes and to partition the activities such that a reasonable collaborative working as well as the protection of privacy are possible. The first issue is facilitated by giving the users free access to all functional possibilities of the eLearning environment, i.e. each user is allowed to do anything ? within the frame of generally agreed rules and directives. In order to provide reasonable access control, BluES integrates a privacy-enhancing identity management system, which is part of the research project PRIME. This way, users are guaranteed that processing their personal data on services side is reduced to a minimum. Furthermore, they can keep track of all transactions of their data, which allows for maximal transparency.
Rome; 01/2005
