Safe 'sandbox' for the internet of the future

May 13, 2011

To better protect new Internet applications against hacker attacks and other types of manipulation, Siemens is taking part in the EU’s WebSand research project. In cooperation with partner organizations SAP, the University of Passau (Germany), the Catholic University of Leuven (Belgium), and the Chalmers University of Technology (Sweden), Siemens will be working to develop technology that will help protect users who surf dynamic, interactive websites and to implement it in software over the next three years. The system will create a protected environment in which information can be used only in a controlled manner.

Social media services such as Facebook and Twitter are examples of how active content is becoming increasingly networked on the Web. So-called “mashups” combine content and functional elements from various sources at a single website — for example Facebook’s “I like it” function or a map from Google Maps. Although users can’t immediately recognize mashups, they pose a number of risks, including unauthorized access to personal data or monitoring of surfing behavior. 

The aim of the WebSand project is to make the composition of mashups more secure in order to protect users against the threat posed by the mashups’ active elements. The website providers often don’t control external content and can’t blindly trust it, which is why the researchers are looking for other ways to control the flow of information. To do this, the user is given a security module that can run all of the embedded applications in a secure mode. When a website is called up, potentially harmful program codes run in a “sandbox,” where they can’t cause any damage. 

The IT security experts at ’ central research unit Corporate Technology are contributing to the project their experience with a wide variety of applications. These applications include the company’s products for industrial automation, hospital information systems, and control centers for factories and power plants. The programs for these systems are already Web-based and subject to the same changes as all other Internet sites.

Explore further: Five things to know about Clinton's State Department emails

add to favorites email to friend print save as pdf

Related Stories

Understanding the social side of cyber-security issues

May 04, 2011

When Engin Kirda started focusing on cyber-security research 10 years ago, those primarily responsible for launching Internet attacks were teenagers out for kicks, he said. But the scope of threats existing ...

For software developers, more speed and mobility

Dec 14, 2010

Across the globe, technology and innovation are becoming increasingly more reliant on mobility and accessibility. For software developers working on highly complex projects, that means being able to save their ...

Recommended for you

Facebook help a matter of timing

3 hours ago

Getting a response to a request for assistance on social media may have more to do with your request's timing than how many followers you have, research suggests.

Supreme Court allows challenge to Colorado Internet tax law

22 hours ago

A unanimous Supreme Court ruled Tuesday that federal courts can hear a dispute over Colorado's Internet tax law. One justice suggested it was time to reconsider the ban on state collection of sales taxes from companies outside ...

Clinton ran own computer system for her official emails

Mar 03, 2015

The computer server that transmitted and received Hillary Rodham Clinton's emails—on a private account she used exclusively for official business when she was secretary of state—traced back to an Internet ...

Twitter working with probe on online threats

Mar 02, 2015

Twitter said Monday it was working with law enforcement officials on unspecified threats, amid reports that the social network had been targeted for blocking accounts linked to the Islamic State.

User comments : 0

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.