Winter
2012/13

Electronic Identity
[32257] SE  (2 SWS, Dipl. 3 SP / M.Sc. 5 SP / Ba. 3 SP),
Do 15:15-16:45 RUD26, 1303
Instructor: Dr. Wolf Müller
 

Computer Science Department
Systems Architecture Group

• Seminar, Praktische Informatik
• 2h each week, 2 SWS
• Students will present a selection of papers that will help you understand which threats exist, judge their significance and learn methods to defend your system against hackers. In addition you will explore the mathematical underpinnings of today's most common security tools and protocols.

Credits:

  In order to obtain credits for this seminar, participants are expected to:

• Is possible for bachelor, master, Diplom (degree of difficulty)
• This seminar can be combined with "VL IT-Sicherheit Grundlagen" "Modul mit Seminar (BSEM)" zur Studienordnung Bachelor Informatik (Mono-Bachelor) [link]
• Dipl. 3 SP / M.Sc. 5 SP / Ba. 3 SP
• Attend regularly (at least 90%).
• Read each paper before the seminar, to be adequately prepared for discussion.
• Research an assigned subject; present major findings (45 min presentation; 30 min discussion).
• Presentations will be evaluated by two members of the audience at the end of each class (Bewertungskriterien-Seminarvortrag.pdf).
• Presenters summarize their presentation and relevant discussion on the Seminar's WIKI page within 2 weeks.
• Presentations may be given in English or German. All documents are in English (exceptions may be granted).

Prerequisites:

• This seminar is suitable for students of all technical science disciplines who have previously completed courses PI 1,2,3 or equivalent.

Wiki:

• In addition to the seminar home page (this page), there is a WIKI for dynamically added content, e.g. contributions by students: https://sarwiki.informatik.hu-berlin.de/W2012-EI.

Topics

• Mozilla Persona [http][persona.org] (D. Washington)
• oAuth2 [oauth.net/2 ] (R. Döring)
• W3C Web Cryptography API [http] (S. Günther)
• On Breaking SAML: Be Whoever You Want to Be [https] (D. Foerster)
• OpenID 2.0 [http] and OpenID Connect [http] (C. Döpmann)
• U-Prove (Technology Overview) [https] (C. Mundhenk, K. Heidelberger)
• IDEMIX, Identity Mixer [http]
• DE-Mail [https]
• SmartCards (basics, ATR, EF, DF, APDU) [Buch am Lehrstuhl: "Handbuch der Chipkarten", Wolfgang Effing, Wolfgang Rankl, ISBN-13: 978-3446404021] (F. Häber, C. Zyweck)
• ePASS [ICAO] (L. Linkermann, T. Garus)
• nPA-PACE,EAC [TR-03110]
• nPA-Infrastruktur [TR-03130] (J.-F. Laß, R. Witte)
• Survey electronic IDs [Buch am Lehrstuhl: "Elektronische Ausweisdokumente", Klaus Schmeh, ISBN-13: 978-3446419186] (M. Lemm, M. Schaeffer)
• Elektronischer Aufenthaltstitel [pdf][TR]
• NFC in public Transport (In particular DB's touch & travel) [pdf] (C. Steinfeldt, S. Brack)
• ... (further topics are possible, also own interesting suggestions are welcome)

Syllabus:

Recent / Incoming:

• fahrCard (zukünftiges eTicket der BVG) [faq]
• Startschuss für das elektronische Ticket in der Hauptstadtregion [pdf]
• (((eTicket Deutschland Einfach grenzenlos – grenzenlos einfach [pdf]
• Heise:TR: "Jetzt funkt's an der Kasse" [http]
• eSign:
  http://heise.de/-1736387 , http://heise.de/-1751434
  http://www.bundesdruckerei.de/de/199-sign-me 
  https://www.chipkartenleser-shop.de/shop/cert_bdr
   

Further Readings (Research@SAR & Books):

• BeID-Lab
• Security and Identity Management
• Claudia Eckert. IT-Sicherheit
• Ross Anderson. Security Engineering: A Guide to Building Dependable Distributed Systems.
• Bruce Schneier. Applied Cryptography: Protocols, Algorithms, and Source Code in C, Second Edition.