Security and Trust on the Information Society
The main objective of the SEGUR@ project was to develop a new environment of security and reliability to be used in the information society. To achieve this, the project combines results from different areas of research: identification, authentication, network access control, client self-defense, intrusion detection, risk analysis and crisis simulation are the main research topics that were actively worked on.
NICS was involved in the research and application of new technologies for client self-defense. We elaborated an exhaustive analysis of vulnerabilities in current security systems, both physical and logical solutions, and extracted a set of lessons to be learned that guided us into the design of new solutions for the detection and reaction to attacks.
We have developed a platform for intrusion detection that made use of the different services provided by the Intel VPRO platform. A virtualized service was designed that has been secured using both Intel TXT and Intel AMT while Intel VT boost the performance of the whole solution. We have gained experience in the deployment of secured XEN hypervisors as well.
Taking advantage of the knowledge acquired on Shibboleth in other research projects, we found out that in some scenarios the use of SmartCards could report a great benefit in terms of usability and management of credentials when used in combination with Shibboleth. We developed a prototype that shows how the experience of using and managing Shibboleth improves when employing SmartCards.