Logo
Logo-Icon Sitemap Print-Icon Print-Version Contact-Icon Contact
  • Home
  • About IAIK
    • People
    • News
    • Events
    • How To Reach Us
    • Jobs
    • Privacy Policy
  • Research
    • Publications
    • E-Government
    • Formal Methods for Design & Verification
    • Implementation Attacks
    • Java-Security
    • Krypto
    • Secure & Correct Systems
    • Secure Entities for Smart Environments
    • Secure RFID
    • Trusted Computing
    • VLSI
  • Teaching
    • Bachelor Courses
    • Master Courses
    • Master Theses
    • Microsoft Academic Alliance
    • PhD
    • E-Exam
  • Partnerships
    • A-SIT
    • Stiftung SIC
Left Logo
Research
Publications E-Government Formal Methods for Design & Verification Implementation Attacks Java-Security Krypto Secure & Correct Systems - Project Sepia Secure Entities for Smart Environments Secure RFID Trusted Computing VLSI
Right Logo
You are here: Start » Research » Secure & Correct Systems » Project Sepia

Website: http://www.sepia-project.eu/
Manager: Roderick Bloem
Staff members: Kurt Dietrich, Johannes Winter
E-Mail: roderick.bloem@iaik.tugraz.at

SEPIA - Secure Embedded Platform with advanced Process Isolation and Anonymity capabilities

Mobile and embedded devices are rapidly evolving into powerful, ubiquitous personal assistants. As such, they will be involved in security-critical operations like authentication, payment, e-Banking and e-Government applications. Nevertheless, they have to be open platforms on which entertainment applications need to find their place.

Being part of the Internet of Things, these platforms become an interesting target to attack and efficient security mechanisms are required to increase people’s and companies’ trust in them. The SEPIA project addresses these challenges and considers trustworthiness, security and protection capabilities of such devices as key enablers for new businesses and the integration of mobile platforms in the e-Europe initiative.

Establishing trust requires assessments from independent organisations. However, existing evaluation methodologies do not keep pace with the rapidly evolving mobile and embedded market.

SEPIA will, therefore, focus on three topics: Security enhancements of mobile platforms, cryptography and privacy protecting technologies, as well as delta-evaluation and certification methodologies. A major objective of SEPIA is to define a next-generation security-architecture for mobile and embedded systems, addressing topics such as isolated execution space, virtualisation and secure protection of confidential data. Moreover, privacy protecting mechanisms, based on strong cryptography and time- and cost efficient certification processes, reducing the time from design to market, will be researched in the project. In SEPIA, establishing trustworthiness is seen as an asset that is considered right from the design phase rather than being addressed as add-on feature. SEPIA will include theoretical and practical research as well as the development of proof-of-concept prototypes. All these efforts will result in the SEPIA reference platform which will be disseminated via demonstrators and as an open platform for further research and product development.

SEPIA is funded by the European Commission as an FP7 STReP.

Publications

Proceedings
2012 Martin Pirker, Johannes Winter, Ronald Tögl - "Lightweight Distributed Attestation for the Cloud" - Proceedings of the 2nd International Conference on Cloud Computing and Services Science (CLOSER) (Note: to appear) Icon BibTex Icon Download Inactive Icon WebUrl
2012 Martin Pirker, Daniel Slamanig, Johannes Winter - "Practical Privacy Preserving Cloud Resource-Payment for Constrained Clients" - Proceedings of the 12th Privacy Enhancing Technologies Symposium (PETS) (Note: to appear) Icon BibTex Icon Download Inactive Icon WebUrl
2012 Martin Pirker, Johannes Winter, Ronald Tögl - "Lightweight Distributed Heterogeneous Attested Android Clouds" - Proceedings of the 5th International Conference on Trust & Trustworthy Computing (TRUST) (Note: to appear) Icon BibTex Icon Download Inactive Icon WebUrl
2011 Paul Wiegele, Johannes Winter, Martin Pirker, Ronald Tögl - "A flexible software development and emulation framework for ARM TrustZone" - Proc. INTRUST (Note: to appear) Icon BibTex Icon Download Inactive Icon WebUrl
2011 Siegfried Podesser, Ronald Tögl - "A Software Architecture for Introducing Trust in Java-Based Clouds" - Secure and Trust Computing, Data Management, and Applications Icon BibTex Icon Download Inactive Icon WebUrl
2011 Johannes Winter, Kurt Dietrich - "A Hijacker's Guide to the LPC bus" - Proceedings of the 8th European Workshop on Public Key Infrastructures, Services, and Applications (EuroPKI '11) Icon BibTex Icon Download Inactive Icon WebUrl
2010 Christian Wachsmann, Sadeghi Ahmad-Reza, Liqun Chen, Kurt Dietrich, Hans Löhr, Johannes Winter - "Lightweight Anonymous Authentication with TLS and DAA for Embedded Mobile Devices" (Note: to appear) Icon BibTex Icon Download Inactive Icon WebUrl
2010 Andreas Reiter, Georg Neubauer, Michael Kapfenberger, Johannes Winter, Kurt Dietrich - "Seamless Integration of Trusted Computing into Standard Cryptographic Frameworks" (Note: to appear) Icon BibTex Icon Download Inactive Icon WebUrl
2010 Kurt Dietrich - "Anonymous Client Authentication for Transport Layer Security" - Communications and Multimedia Security, 11th IFIP TC 6/TC 11 International Conference, CMS 2010 (Note: to appear) Icon BibTex Icon Download Icon WebUrl
2010 Kurt Dietrich, Johannes Winter - "A Secure and Practical Approach for Providing Anonymity Protection for Trusted Platforms" (Note: to appear) Icon BibTex Icon Download Inactive Icon WebUrl

Presentation
2011 Johannes Winter - "A Hijacker's Guide to the LPC bus" (8th European Workshop on Public Key Infrastructures, Services, and Applications (EuroPKI '11), 15.09.11) Icon BibTex Icon Download Icon WebUrl

© 1990 - 2012 IAIK TU Graz
Contact | Jobs | Sitemap | Impressum