Kai Rannenberg Livres

Digitising personal information is changing our ways of identifying persons and managing relations. What used to be a „natural“ identity, is now as virtual as a user account at a web portal, an email address, or a mobile phone number. It is subject to diverse forms of identity management in business, administration, and among citizens. Core question and source of conflict is who owns how much identity information of whom and who needs to place trust into which identity information to allow access to resources. This book presents multidisciplinary answers from research, government, and industry. Research from states with different cultures on the identification of citizens and ID cards is combined towards analysis of HighTechIDs and Virtual Identities, considering privacy, mobility, profiling, forensics, and identity related crime. „FIDIS has put Europe on the global map as a place for high quality identity management research.“ –V. Reding, Commissioner, Responsible for Information Society and Media (EU)

These proceedings contain the papers of IFIP/SEC 2010. It was a special honour and privilege to chair the Program Committee and prepare the proceedings for this conf- ence, which is the 25th in a series of well-established international conferences on security and privacy organized annually by Technical Committee 11 (TC-11) of IFIP. Moreover, in 2010 it is part of the IFIP World Computer Congress 2010 celebrating both the Golden Jubilee of IFIP (founded in 1960) and the Silver Jubilee of the SEC conference in the exciting city of Brisbane, Australia, during September 20–23. The call for papers went out with the challenging motto of “Security & Privacy Silver Linings in the Cloud” building a bridge between the long standing issues of security and privacy and the most recent developments in information and commu- cation technology. It attracted 102 submissions. All of them were evaluated on the basis of their significance, novelty, and technical quality by at least five member of the Program Committee. The Program Committee meeting was held electronically over a period of a week. Of the papers submitted, 25 were selected for presentation at the conference; the acceptance rate was therefore as low as 24. 5% making SEC 2010 a highly competitive forum. One of those 25 submissions could unfortunately not be included in the proceedings, as none of its authors registered in time to present the paper at the conference.

Im neuen Jahrtausend gewinnen die Themen zur Verlässlichkeit komplexer, vernetzter Systeme an Bedeutung. Das Buch behandelt sicherheitskritische Bereiche wie elektronischen Handel, digitale Signaturen und Copyright-Fragen. Es basiert auf der GI-Tagung "VIS´99 - Verlässliche IT-Systeme", die 1999 in Essen stattfand.

Zertifizierung und Evaluation von IT-Sicherheit gewinnen mehr und mehr Bedeutung, nicht zuletzt durch einschlägige Bestimmungen des neuen deutschen Gesetzes zur digitalen Signatur.Dieses Buch gibt aus unabhängiger Perspektive einen Überblick über Stand, Entwicklung und Kriterien der IT-Sicherheitszertifizierung. Es stellt herkömmlicher IT-Sicherheit, die vor allem das Interesse der Systembetreiber im Blickfeld hatte, mehrseitige IT-Sicherheit gegenüber, also den gleichberechtigten Schutz von Nutzern und Kunden.Auf der Basis neuer Erfahrungen werden zusätzlich die Organisation von IT-Sicherheitszertifizierung und -evaluation untersucht und Vorschläge zur Steigerung ihrer Effizienz entwickelt.Dieses Buch nutzt besonders Beschaffern, Betreibern und Verwaltern von IT-Systemen sowie Datenschutz- und Sicherheitsverantwortlichen und gibt ihnen u.a. die Möglichkeit, bei einer Kaufentscheidung die ihnen präsentierten Zertifikate besser einzuordnen. Produkt- und Systementwickler bekommen Einblick in Ziele und Ablauf der IT-Sicherheitszertifizierung.