CrySIL: Bringing Crypto to the Modern User

Florian Reimair, Peter Teufl, Thomas Zefferer

Research output: Chapter in Book/Report/Conference proceedingChapterResearchpeer-review

Abstract

Modern times introduced a highly heterogeneous device landscape. The landscape was populated by distributed applications. These applications are used by modern multi-device users. A modern user wants to create, process, and share potentially sensitive data among her devices. For instance, start a document at the smart phone, continue on the laptop and finish the document on a tablet. A common way to protect sensitive data against disclosure and theft is cryptography. Cryptography, however, requires for all devices in question to be able to perform appropriate operations and protect the subsequent cryptographic primitives against attacks. Unfortunately, different devices have different capabilities when it comes to cryptography. Some have hardware-backed solutions available, some cannot do any cryptography at all. In general, it is hard to provide adequate (and potentially equal) cryptographic methods on every device of the modern landscape – be it rather basic and well-known schemes or new methodologies that are long awaited to stand the challenges of the cloud. In order to tackle the above mentioned status and bring cryptography to the modern multi-device user, we present CrySIL, the Cryptographic Service Interoperability Layer. CrySIL is designed as a flexible and extensible layer between the user and the cryptographic primitive. In a nutshell, CrySIL can use local key storage solutions, offers remote key storage and crypto provider deployments, and features strong authentication methodologies to constrain access to cryptographic primitives. In this work, we explain the motivation of CrySIL, describe its architecture, highlight its deployment in a typical modern use case, and reflect on achievements and shortcomings.
LanguageEnglish
Title of host publicationWeb Information Systems and Technologies
Subtitle of host publication11th International Conference, WEBIST 2015, Lisbon, Portugal, May 20-22, 2015, Revised Selected Papers
EditorsValérie Monfort, Karl-Heinz Krempels, Tim A. Majchrzak, Ẑiga Turk
PublisherSpringer
Pages70-90
Number of pages20
Edition1
ISBN (Electronic)978-3-319-30996-5
ISBN (Print)978-3-319-30995-8
DOIs
StatusPublished - 22 Mar 2016

Publication series

NameLecture Notes in Business Information Processing
PublisherSpringer International Publishing
Volume246
ISSN (Electronic)1865-1348

Fingerprint

Cryptography
Interoperability
Authentication
Computer hardware

Keywords

  • Cloud security
  • Central cryptographic solutions
  • Advanced cryptographic protocols
  • Heterogeneous applications
  • Mobile devices

Fields of Expertise

  • Information, Communication & Computing

Cite this

Reimair, F., Teufl, P., & Zefferer, T. (2016). CrySIL: Bringing Crypto to the Modern User. In V. Monfort, K-H. Krempels, T. A. Majchrzak, & Ẑ. T. (Eds.), Web Information Systems and Technologies: 11th International Conference, WEBIST 2015, Lisbon, Portugal, May 20-22, 2015, Revised Selected Papers (1 ed., pp. 70-90). (Lecture Notes in Business Information Processing; Vol. 246). Springer. https://doi.org/10.1007/978-3-319-30996-5

CrySIL: Bringing Crypto to the Modern User. / Reimair, Florian; Teufl, Peter; Zefferer, Thomas.

Web Information Systems and Technologies: 11th International Conference, WEBIST 2015, Lisbon, Portugal, May 20-22, 2015, Revised Selected Papers. ed. / Valérie Monfort; Karl-Heinz Krempels; Tim A. Majchrzak; Ẑiga Turk. 1. ed. Springer, 2016. p. 70-90 (Lecture Notes in Business Information Processing; Vol. 246).

Research output: Chapter in Book/Report/Conference proceedingChapterResearchpeer-review

Reimair, F, Teufl, P & Zefferer, T 2016, CrySIL: Bringing Crypto to the Modern User. in V Monfort, K-H Krempels, TA Majchrzak & ẐT (eds), Web Information Systems and Technologies: 11th International Conference, WEBIST 2015, Lisbon, Portugal, May 20-22, 2015, Revised Selected Papers. 1 edn, Lecture Notes in Business Information Processing, vol. 246, Springer, pp. 70-90. https://doi.org/10.1007/978-3-319-30996-5
Reimair F, Teufl P, Zefferer T. CrySIL: Bringing Crypto to the Modern User. In Monfort V, Krempels K-H, Majchrzak TA, ẐT, editors, Web Information Systems and Technologies: 11th International Conference, WEBIST 2015, Lisbon, Portugal, May 20-22, 2015, Revised Selected Papers. 1 ed. Springer. 2016. p. 70-90. (Lecture Notes in Business Information Processing). https://doi.org/10.1007/978-3-319-30996-5
Reimair, Florian ; Teufl, Peter ; Zefferer, Thomas. / CrySIL: Bringing Crypto to the Modern User. Web Information Systems and Technologies: 11th International Conference, WEBIST 2015, Lisbon, Portugal, May 20-22, 2015, Revised Selected Papers. editor / Valérie Monfort ; Karl-Heinz Krempels ; Tim A. Majchrzak ; Ẑiga Turk. 1. ed. Springer, 2016. pp. 70-90 (Lecture Notes in Business Information Processing).
@inbook{fbc2de5b95fc43af8cb84d4300cd76e4,
title = "CrySIL: Bringing Crypto to the Modern User",
abstract = "Modern times introduced a highly heterogeneous device landscape. The landscape was populated by distributed applications. These applications are used by modern multi-device users. A modern user wants to create, process, and share potentially sensitive data among her devices. For instance, start a document at the smart phone, continue on the laptop and finish the document on a tablet. A common way to protect sensitive data against disclosure and theft is cryptography. Cryptography, however, requires for all devices in question to be able to perform appropriate operations and protect the subsequent cryptographic primitives against attacks. Unfortunately, different devices have different capabilities when it comes to cryptography. Some have hardware-backed solutions available, some cannot do any cryptography at all. In general, it is hard to provide adequate (and potentially equal) cryptographic methods on every device of the modern landscape – be it rather basic and well-known schemes or new methodologies that are long awaited to stand the challenges of the cloud. In order to tackle the above mentioned status and bring cryptography to the modern multi-device user, we present CrySIL, the Cryptographic Service Interoperability Layer. CrySIL is designed as a flexible and extensible layer between the user and the cryptographic primitive. In a nutshell, CrySIL can use local key storage solutions, offers remote key storage and crypto provider deployments, and features strong authentication methodologies to constrain access to cryptographic primitives. In this work, we explain the motivation of CrySIL, describe its architecture, highlight its deployment in a typical modern use case, and reflect on achievements and shortcomings.",
keywords = "Cloud security, Central cryptographic solutions, Advanced cryptographic protocols, Heterogeneous applications, Mobile devices",
author = "Florian Reimair and Peter Teufl and Thomas Zefferer",
year = "2016",
month = "3",
day = "22",
doi = "10.1007/978-3-319-30996-5",
language = "English",
isbn = "978-3-319-30995-8",
series = "Lecture Notes in Business Information Processing",
publisher = "Springer",
pages = "70--90",
editor = "Val{\'e}rie Monfort and Karl-Heinz Krempels and Majchrzak, {Tim A.} and {Ẑiga Turk}",
booktitle = "Web Information Systems and Technologies",
edition = "1",

}

TY - CHAP

T1 - CrySIL: Bringing Crypto to the Modern User

AU - Reimair, Florian

AU - Teufl, Peter

AU - Zefferer, Thomas

PY - 2016/3/22

Y1 - 2016/3/22

N2 - Modern times introduced a highly heterogeneous device landscape. The landscape was populated by distributed applications. These applications are used by modern multi-device users. A modern user wants to create, process, and share potentially sensitive data among her devices. For instance, start a document at the smart phone, continue on the laptop and finish the document on a tablet. A common way to protect sensitive data against disclosure and theft is cryptography. Cryptography, however, requires for all devices in question to be able to perform appropriate operations and protect the subsequent cryptographic primitives against attacks. Unfortunately, different devices have different capabilities when it comes to cryptography. Some have hardware-backed solutions available, some cannot do any cryptography at all. In general, it is hard to provide adequate (and potentially equal) cryptographic methods on every device of the modern landscape – be it rather basic and well-known schemes or new methodologies that are long awaited to stand the challenges of the cloud. In order to tackle the above mentioned status and bring cryptography to the modern multi-device user, we present CrySIL, the Cryptographic Service Interoperability Layer. CrySIL is designed as a flexible and extensible layer between the user and the cryptographic primitive. In a nutshell, CrySIL can use local key storage solutions, offers remote key storage and crypto provider deployments, and features strong authentication methodologies to constrain access to cryptographic primitives. In this work, we explain the motivation of CrySIL, describe its architecture, highlight its deployment in a typical modern use case, and reflect on achievements and shortcomings.

AB - Modern times introduced a highly heterogeneous device landscape. The landscape was populated by distributed applications. These applications are used by modern multi-device users. A modern user wants to create, process, and share potentially sensitive data among her devices. For instance, start a document at the smart phone, continue on the laptop and finish the document on a tablet. A common way to protect sensitive data against disclosure and theft is cryptography. Cryptography, however, requires for all devices in question to be able to perform appropriate operations and protect the subsequent cryptographic primitives against attacks. Unfortunately, different devices have different capabilities when it comes to cryptography. Some have hardware-backed solutions available, some cannot do any cryptography at all. In general, it is hard to provide adequate (and potentially equal) cryptographic methods on every device of the modern landscape – be it rather basic and well-known schemes or new methodologies that are long awaited to stand the challenges of the cloud. In order to tackle the above mentioned status and bring cryptography to the modern multi-device user, we present CrySIL, the Cryptographic Service Interoperability Layer. CrySIL is designed as a flexible and extensible layer between the user and the cryptographic primitive. In a nutshell, CrySIL can use local key storage solutions, offers remote key storage and crypto provider deployments, and features strong authentication methodologies to constrain access to cryptographic primitives. In this work, we explain the motivation of CrySIL, describe its architecture, highlight its deployment in a typical modern use case, and reflect on achievements and shortcomings.

KW - Cloud security

KW - Central cryptographic solutions

KW - Advanced cryptographic protocols

KW - Heterogeneous applications

KW - Mobile devices

U2 - 10.1007/978-3-319-30996-5

DO - 10.1007/978-3-319-30996-5

M3 - Chapter

SN - 978-3-319-30995-8

T3 - Lecture Notes in Business Information Processing

SP - 70

EP - 90

BT - Web Information Systems and Technologies

A2 - Monfort, Valérie

A2 - Krempels, Karl-Heinz

A2 - Majchrzak, Tim A.

A2 - , Ẑiga Turk

PB - Springer

ER -