Cryptographic Service Providers in Current Device Landscapes: An Inconvenient Truth

Florian Reimair, Johannes Feichtner, Dominik Ziegler, Sandra Kreuzhuber, Thomas Zefferer

2017

Abstract

Current application and device landscapes became a harsh environment for data security. Multi-device users enjoy the convenience and efficiency of modern distributed applications in a highly heterogeneous device landscape. However, today's data protection mechanisms fell behind in taking care of some current use cases and application scenarios. We perform a case study and an in-depth security analysis and risk assessment on a simplified set of three different cryptographic service provider types; software, hardware, and remote. Our case study shows that different provider types can change application characteristics considerably. Our security analysis and risk assessment shows how different provider types can influence the security properties of a set of use cases. We found that no one provider can excel for every cryptographic task. Based on these findings we formulate a list of features which we believe are crucial to get the data protection mechanisms up to speed again so that everyone can again benefit from data security even in a world of highly distributed applications and data.

Download


Paper Citation


in Harvard Style

Reimair F., Feichtner J., Ziegler D., Kreuzhuber S. and Zefferer T. (2017). Cryptographic Service Providers in Current Device Landscapes: An Inconvenient Truth . In Proceedings of the 14th International Joint Conference on e-Business and Telecommunications - Volume 6: SECRYPT, (ICETE 2017) ISBN 978-989-758-259-2, pages 367-374. DOI: 10.5220/0006466603670374


in Bibtex Style

@conference{secrypt17,
author={Florian Reimair and Johannes Feichtner and Dominik Ziegler and Sandra Kreuzhuber and Thomas Zefferer},
title={Cryptographic Service Providers in Current Device Landscapes: An Inconvenient Truth},
booktitle={Proceedings of the 14th International Joint Conference on e-Business and Telecommunications - Volume 6: SECRYPT, (ICETE 2017)},
year={2017},
pages={367-374},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0006466603670374},
isbn={978-989-758-259-2},
}


in EndNote Style

TY - CONF
JO - Proceedings of the 14th International Joint Conference on e-Business and Telecommunications - Volume 6: SECRYPT, (ICETE 2017)
TI - Cryptographic Service Providers in Current Device Landscapes: An Inconvenient Truth
SN - 978-989-758-259-2
AU - Reimair F.
AU - Feichtner J.
AU - Ziegler D.
AU - Kreuzhuber S.
AU - Zefferer T.
PY - 2017
SP - 367
EP - 374
DO - 10.5220/0006466603670374