The Net Rat: Rethinking Connected Services for Increased Security

Bernd Prünster; Florian Reimair; Andreas Reiter

The Net Rat: Rethinking Connected Services for Increased Security

Bernd Prünster, Florian Reimair, Andreas Reiter

Publikation: Beitrag in Buch/Bericht/Konferenzband › Beitrag in einem Konferenzband › Begutachtung

Abstract

Traditional desktop computers have been outranked in terms of usage numbers by mobile devices. Still, many popular mobile-first services rely on workflows designed decades ago for a different environment. When relying on cloud-based services, privacy and data protection issues need to be considered. Mostly, however, one can choose between either well-supported legacy applications or innovative niche solutions. In this paper, we introduce the Net Rat, a framework enabling a seamless transition from existing centralised setups to decentralised state-of-the-art services, increasing security while maintaining backwards compatibility to well-established legacy services. We demonstrate the feasibility of our approach with a case study focusing on the decentralisation of the e-mail service—until now, this failed due to missing backward compatibility. A security analysis demonstrates how our approach reaches its goal of protecting user data through decentralisation. The Net Rat is built on a solid foundation as result of a security-first design. The results of this work clearly show the feasibility of decentralising existing services and highlight how well-established services can be improved. Our approach also presents opportunities to develop new services based on a solid foundation.

Originalsprache	englisch
Titel	Proceedings of the 14th International Joint Conference on e-Business and Telecommunications
Herausgeber (Verlag)	SciTePress
Seiten	375-383
Seitenumfang	9
Band	4: SECRYPT
ISBN (elektronisch)	978-989-758-259-2
Publikationsstatus	Veröffentlicht - Juli 2017
Veranstaltung	International Joint Conference on e-Business and Telecommunications - Madrid, Spanien Dauer: 24 Juli 2017 → 27 Juli 2017 Konferenznummer: 14

Konferenz

Konferenz	International Joint Conference on e-Business and Telecommunications
Kurztitel	ICETE 2017
Land/Gebiet	Spanien
Ort	Madrid
Zeitraum	24/07/17 → 27/07/17

Schlagwörter

peer-to-peer
Netzwerksicherheit
Dezentralisierung

Fields of Expertise

Information, Communication & Computing

Treatment code (Nähere Zuordnung)

Application

Zugriff auf Dokument

SECRYPT_2017_98_CREndgültige, publizierte Fassung, 286 KB

Andere Dateien und Links

Konferenzwebseite

A-SIT - Zentrum für sichere Informationstechnologie Austria
Stranacher, K., Dominikus, S., Leitold, H., Marsalek, A., Teufl, P., Bauer, W., Aigner, M. J., Rössler, T., Neuherz, E., Dietrich, K., Zefferer, T., Mangard, S., Payer, U., Orthacker, C., Lipp, P., Reiter, A., Knall, T., Bratko, H., Bonato, M., Suzic, B., Zwattendorfer, B., Kreuzhuber, S., Oswald, M. E., Tauber, A., Posch, R., Bratko, D., Feichtner, J., Ivkovic, M., Reimair, F., Wolkerstorfer, J. & Scheibelhofer, K.
21/05/99 → 6/08/20
Projekt: Arbeitsgebiet

International Joint Conference on e-Business and Telecommunications
Bernd Prünster (Teilnehmer/-in)
24 Juli 2017 → 26 Juli 2017
Aktivität: Teilnahme an / Organisation von › Konferenz oder Fachtagung (Teilnahme an/Organisation von)

Dieses zitieren

@inproceedings{8b675892dcff48a9bc39daffc92358d4,

title = "The Net Rat: Rethinking Connected Services for Increased Security",

abstract = "Traditional desktop computers have been outranked in terms of usage numbers by mobile devices. Still, many popular mobile-first services rely on workflows designed decades ago for a different environment. When relying on cloud-based services, privacy and data protection issues need to be considered. Mostly, however, one can choose between either well-supported legacy applications or innovative niche solutions. In this paper, we introduce the Net Rat, a framework enabling a seamless transition from existing centralised setups to decentralised state-of-the-art services, increasing security while maintaining backwards compatibility to well-established legacy services. We demonstrate the feasibility of our approach with a case study focusing on the decentralisation of the e-mail service—until now, this failed due to missing backward compatibility. A security analysis demonstrates how our approach reaches its goal of protecting user data through decentralisation. The Net Rat is built on a solid foundation as result of a security-first design. The results of this work clearly show the feasibility of decentralising existing services and highlight how well-established services can be improved. Our approach also presents opportunities to develop new services based on a solid foundation.",

keywords = "peer-to-peer, network security, decentralisation, peer-to-peer, Netzwerksicherheit, Dezentralisierung",

author = "Bernd Pr{\"u}nster and Florian Reimair and Andreas Reiter",

year = "2017",

month = jul,

language = "English",

volume = "4: SECRYPT",

pages = "375--383",

booktitle = "Proceedings of the 14th International Joint Conference on e-Business and Telecommunications",

publisher = "SciTePress",

address = "Portugal",

note = "International Joint Conference on e-Business and Telecommunications, ICETE 2017 ; Conference date: 24-07-2017 Through 27-07-2017",

}

TY - GEN

T1 - The Net Rat

T2 - International Joint Conference on e-Business and Telecommunications

AU - Prünster, Bernd

AU - Reimair, Florian

AU - Reiter, Andreas

N1 - Conference code: 14

PY - 2017/7

Y1 - 2017/7

N2 - Traditional desktop computers have been outranked in terms of usage numbers by mobile devices. Still, many popular mobile-first services rely on workflows designed decades ago for a different environment. When relying on cloud-based services, privacy and data protection issues need to be considered. Mostly, however, one can choose between either well-supported legacy applications or innovative niche solutions. In this paper, we introduce the Net Rat, a framework enabling a seamless transition from existing centralised setups to decentralised state-of-the-art services, increasing security while maintaining backwards compatibility to well-established legacy services. We demonstrate the feasibility of our approach with a case study focusing on the decentralisation of the e-mail service—until now, this failed due to missing backward compatibility. A security analysis demonstrates how our approach reaches its goal of protecting user data through decentralisation. The Net Rat is built on a solid foundation as result of a security-first design. The results of this work clearly show the feasibility of decentralising existing services and highlight how well-established services can be improved. Our approach also presents opportunities to develop new services based on a solid foundation.

AB - Traditional desktop computers have been outranked in terms of usage numbers by mobile devices. Still, many popular mobile-first services rely on workflows designed decades ago for a different environment. When relying on cloud-based services, privacy and data protection issues need to be considered. Mostly, however, one can choose between either well-supported legacy applications or innovative niche solutions. In this paper, we introduce the Net Rat, a framework enabling a seamless transition from existing centralised setups to decentralised state-of-the-art services, increasing security while maintaining backwards compatibility to well-established legacy services. We demonstrate the feasibility of our approach with a case study focusing on the decentralisation of the e-mail service—until now, this failed due to missing backward compatibility. A security analysis demonstrates how our approach reaches its goal of protecting user data through decentralisation. The Net Rat is built on a solid foundation as result of a security-first design. The results of this work clearly show the feasibility of decentralising existing services and highlight how well-established services can be improved. Our approach also presents opportunities to develop new services based on a solid foundation.

KW - peer-to-peer

KW - network security

KW - decentralisation

KW - peer-to-peer

KW - Netzwerksicherheit

KW - Dezentralisierung

UR - http://secrypt.icete.org/

M3 - Conference paper

VL - 4: SECRYPT

SP - 375

EP - 383

BT - Proceedings of the 14th International Joint Conference on e-Business and Telecommunications

PB - SciTePress

Y2 - 24 July 2017 through 27 July 2017

ER -

The Net Rat: Rethinking Connected Services for Increased Security

Abstract

Konferenz

Schlagwörter

Fields of Expertise

Treatment code (Nähere Zuordnung)

Zugriff auf Dokument

Andere Dateien und Links

Fingerprint

Projekte

A-SIT - Zentrum für sichere Informationstechnologie Austria

Aktivitäten

International Joint Conference on e-Business and Telecommunications

Dieses zitieren