Safe 'sandbox' for the internet of the future

May 13, 2011

To better protect new Internet applications against hacker attacks and other types of manipulation, Siemens is taking part in the EU’s WebSand research project. In cooperation with partner organizations SAP, the University of Passau (Germany), the Catholic University of Leuven (Belgium), and the Chalmers University of Technology (Sweden), Siemens will be working to develop technology that will help protect users who surf dynamic, interactive websites and to implement it in software over the next three years. The system will create a protected environment in which information can be used only in a controlled manner.

Social media services such as Facebook and Twitter are examples of how active content is becoming increasingly networked on the Web. So-called “mashups” combine content and functional elements from various sources at a single website — for example Facebook’s “I like it” function or a map from Google Maps. Although users can’t immediately recognize mashups, they pose a number of risks, including unauthorized access to personal data or monitoring of surfing behavior. 

The aim of the WebSand project is to make the composition of mashups more secure in order to protect users against the threat posed by the mashups’ active elements. The website providers often don’t control external content and can’t blindly trust it, which is why the researchers are looking for other ways to control the flow of information. To do this, the user is given a security module that can run all of the embedded applications in a secure mode. When a website is called up, potentially harmful program codes run in a “sandbox,” where they can’t cause any damage. 

The IT security experts at ’ central research unit Corporate Technology are contributing to the project their experience with a wide variety of applications. These applications include the company’s products for industrial automation, hospital information systems, and control centers for factories and power plants. The programs for these systems are already Web-based and subject to the same changes as all other Internet sites.

Explore further: ND Expert: WikiLeaks points out danger of insider threats to information security

Related Stories

For software developers, more speed and mobility

December 14, 2010

Across the globe, technology and innovation are becoming increasingly more reliant on mobility and accessibility. For software developers working on highly complex projects, that means being able to save their work quickly ...

Understanding the social side of cyber-security issues

May 4, 2011

When Engin Kirda started focusing on cyber-security research 10 years ago, those primarily responsible for launching Internet attacks were teenagers out for kicks, he said. But the scope of threats existing through the Web ...

Recommended for you

Netherlands bank customers can get vocal on payments

August 1, 2015

Are some people fed up with remembering and using passwords and PINs to make it though the day? Those who have had enough would prefer to do without them. For mobile tasks that involve banking, though, it is obvious that ...

Power grid forecasting tool reduces costly errors

July 30, 2015

Accurately forecasting future electricity needs is tricky, with sudden weather changes and other variables impacting projections minute by minute. Errors can have grave repercussions, from blackouts to high market costs. ...

Microsoft describes hard-to-mimic authentication gesture

August 1, 2015

Photos. Messages. Bank account codes. And so much more—sit on a person's mobile device, and the question is, how to secure them without having to depend on lengthy password codes of letters and numbers. Vendors promoting ...

0 comments

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.