Abstract : Security and privacy are essential in today’s information-driven society. However, security technologies and privacy-enhancing technologies (PETs) are often difficult to integrate in applications due to their inherent complexity and steep learning curve. In this paper, we present a flexible, technology agnostic development framework that facilitates the integration of security and privacy-preserving technologies into applications. Technology-specific configuration details are shifted from the application code to configuration policies. These policies are configured by domain experts independently from the application’s source code. We developed a prototype in Java, called PriMan, which runs on both desktops and Android based devices. Our experimental evaluation demonstrates that PriMan introduces a low and acceptable overhead (e.g., less than one millisecond per operation). In addition, we compare PriMan with other, freely available solutions. PriMan facilitates the integration of PETs and security technologies in current and future applications.
Nora Cuppens-Boulahia; Frédéric Cuppens; Sushil Jajodia; Anas Abou El Kalam; Thierry Sans. 29th IFIP International Information Security Conference (SEC), Jun 2014, Marrakech, Morocco. Springer, IFIP Advances in Information and Communication Technology, AICT-428, pp.403-416, 2014, ICT Systems Security and Privacy Protection. 〈10.1007/978-3-642-55415-5_34〉
https://hal.inria.fr/hal-01370388
Contributeur : Hal Ifip
<>
Soumis le : jeudi 22 septembre 2016 - 14:30:29
Dernière modification le : jeudi 21 février 2019 - 10:31:47
Andreas Put, Italo Dacosta, Milica Milutinovic, Bart Decker. PriMan: Facilitating the Development of Secure and Privacy-Preserving Applications. Nora Cuppens-Boulahia; Frédéric Cuppens; Sushil Jajodia; Anas Abou El Kalam; Thierry Sans. 29th IFIP International Information Security Conference (SEC), Jun 2014, Marrakech, Morocco. Springer, IFIP Advances in Information and Communication Technology, AICT-428, pp.403-416, 2014, ICT Systems Security and Privacy Protection. 〈10.1007/978-3-642-55415-5_34〉. 〈hal-01370388〉