The CREDENTIAL consortium is composed of a balanced team of 5 industry partners, 2 applied research organisations, an SMEs and 3 universities, which are complementary in their expertise and have strong experience in their respective fields, i.e. identify and access management, cloud computing, information security and usability aspects. The partners are from 7 different EU member states and they were carefully selected to cover the complete value chain from theory to practice to maximize the impact and exploitation potential.
Find out more about the project partners:
AIT (Austrian Institute of Technology GmbH) is an Austrian research institute with a European format and focuses on the key infrastructure issues of the future. An important part of the research of the IT Security within the Safety & Security Department is concentrated on secure system design for safety and security-critical information systems. Our current research work includes security aspects in Cloud Computing, security technologies for Service Oriented Architecture with a focus on the efficient implementation of security requirements through model-driven approaches, the development of federated identity management, cyber defences of critical infrastructure, security for smart grid and smart meters, and organisational information security management. AIT is an active member of the European research community, and has participated and also coordinated numerous European research projects. Recent activities of the Safety & Security Department include participation in the FP7 PRECYSE, FP7 SUDPLAN and FP7 ASSETS projects and the coordination of the FP7 SECCRIT and FP7 TaToo projects, among many others.
Role in project
AIT will coordinate the project and conduct research in the area of secure distributed cloud storage. The team is experienced in managing large interdisciplinary projects also on an EU level, e.g. AIT is coordinating the ongoing cloud security research project SECCRIT (http://seccrit.eu). The team has also a track record in cryptography and contribute its know how for secret sharing based storage systems gained during the last three years in the national research project Archistar (http://archistar.at).
Atos is an international information technology services company. Serving a global client base, it delivers IT services through Consulting & Systems Integration, Managed Operations, and transactional services through Worldline, the European leader and a global player in the payment services industry. Atos Research & Innovation (ARI) is the R&D node of Atos and a global reference of innovation for the whole Atos group. Atos participates in R&D projects in national or international consortia that enrich Atos' technological portfolio. Within ARI the Secure Identity (SID) Technologies Laboratory of ARI focuses on innovative technological trends in these areas to serve the needs of the Research and Innovation sectors and markets offering trustworthy solutions and assets and fostering competitive advantages in an increasingly complex and distributed environment (Cloud, Future Internet, etc.) where eID and privacy can achieve for Atos customers compliance with regulatory requirements, more efficiency, reduced fraud and enhanced cooperation with stakeholders in the eServices value chains. Atos research covers the whole lifecycle of identity and personal data with the aim of comprehensively securing corporate and personal identity and data in cyberspace.
Role in project
Atos will be leading WP4 (Security Protocols and IAM) leveraging its expertise in federated and cross-border identity management as well as leading as large industrial partner the business plan and exploitation strategy and communication activities tasks. Atos will be involved with significant effort in other technical work packages, in particular for business, security and privacy requirements elicitation, functional and technical and implementation and testing.
Fraunhofer-Gesellschaft is Germany’s leading organization for applied research. The Fraunhofer Institute for Open Communication Systems (FOKUS) participating in this project conducts research in e-health, modeldriven engineering and quality assurance, communication technologies, intelligent multimedia, and embedded and automotive systems. FOKUS maintains cooperation with a large number of national and international industrial partners (e.g. Deutsche Telekom, Hitachi, NTT Data, NTT DoCoMo, Daimler, Microsoft, Nokia, Eutelsat, Motorola, Samsung, Siemens), and participates in international research programmes (e.g. of the European Commission, European Space Agency, Eureka/ITEA, Eureka/CELTIC) as well as in national R&D programmes.
Role in project
As one of the leading European healthcare IT research actors Fraunhofer FOKUS will be involved in almost all activities related to architectural and service design, information modelling and systems integration regarding the E-Health use-case. FOKUS will analyze existing protocols and standards for sensor-based networks for their adoption in Cloud Identity Wallet use cases. The protocols and standards will be extended in order to function with proxy re-encryption schemas in the Cloud Identity Wallet. Additionally, FOKUS will contribute with their deep knowledge in webservice security protocols and standards (SAML, WS-*) and with their experience in smartcard technologies especially with the electronic health card. FOKUS will provide reference implementations and their enhancements as open source software. As a work package leader for WP2 FOKUS will manage the requirement engineering process over the whole project.
Johann Wolfgang Goethe-Universität, Frankfurt – Germany: The Chair for Mobile Business and Multilateral Security is part of the Institute of Business Informatics. Enjoying sponsorship by T- Mobile (the leading German mobile communications provider) the chair focuses its research on innovative mobile networks and their applications, as well as on related issues of security and privacy. Its mission is to find business models and technologies enabling the secure and privacy-enabled use of mobile devices and mobile communication for applications and businesses. The Chair for Mobile Business and Multilateral Security has developed several R&D projects, and it has vast experience in coordination and management of large EU-funded projects such as: ABC4Trust, PrimeLife, PICOS, FIDIS, PRIME.
Role in project
GUF will be leading work package 3 “Privacy, usability, user adoption and legal aspects”, contributing with its experience in identity management and privacy enhancing technologies. GUF will analyse the user requirements considering usability and privacy aspects (Task 2.3). GUF will identify the key factors for user acceptance of privacy and cloud identity wallet technologies, providing guidance from privacy by design perspective. GUF will also contribute with its expertise in electronic identification and authentication systems involving biometrics and mobile devices, and will also support the dissemination and standardization activities.
Graz University of Technology (Technische Universität Graz, TUG) will be represented by the Institute for Applied Information Processing and Communications (IAIK). Around fifty researchers at IAIK conduct research, teach, and consult private and as public organizations. IAIK’s research is directed towards several applied as well as theoretical fields like computer networking, embedded systems, system-on-chip design, formal verification, computer security, information security, E-Government and eIDs, cryptography and cryptanalysis. In the field of cryptography, IAIK thereby works in theoretical cryptography for the foundations of efficient and secure algorithms and cryptographic protocols, applied cryptography in various fields of application such as cloud computing, electronic identification, authentication, signatures (eIAS) and the secure implementation of cryptographic primitives, including energy efficient designs for resource constrained devices and awareness of implementation/side-channel attacks. This wide range of related topics researched at the IAIK grants the opportunity to develop an integrated view of all these aspects, which is of special importance for a comprehensive research perspective. IAIK currently participates in several international as well as EU funded projects, has also been involved in European network of excellence projects and also regularly contributes to nationally funded projects. In addition, IAIK acts as advisory board consulting public and private institutions for rapidly-evolving areas like information security, networking, EGovernment and secure implementations of software and hardware. Members of IAIK have been and still are active in standardization groups like CEN, ETSI, JCP, OASIS, TCG, W3C or IETF.
Role in project
TU Graz will contribute with its experience in the design and analysis of cryptographic schemes and protocols within CREDENTIAL in developing encryption schemes for re-encryption computing techniques. TU Graz will further bring in its expertise in identification and authentication technologies and protocols, cryptographic auditing methods for cloud storage architectures and its longstanding expertise in efficient software implementations of cryptographic primitives and protocols and its expertise in their standardization. Moreover, TU Graz contributes the technological manager (TM) to the CREDENTIAL consortium.
The Hellenic Telecommunications Organisation S.A. (OTE), member of the Deutsche Telekom (DT) Group of Companies, is the incumbent telecommunications provider in Greece. OTE offers its customers a wide range of technologically advanced services such as high-speed data communications, mobile telephony, internet access, infrastructure provision, multimedia services, leased lines, maritime and satellite communications, telex and directories. OTE’s vision is to rank among the largest telecommunications companies in Europe, and through its international investments (mainly in the area of South-Eastern Europe), now addresses a potential customer base of 60 million people, making OTE the largest telecommunications provider in SE Europe. OTE’s R&D Department is involved in almost all technological and infrastructural issues, and is an active participant in many EU and international collaborative projects. OTE’s current R&D activities include broadband technologies and services, next generation network architectures, infrastructure development etc., following to the actual challenges for the development of a fully competitive network infrastructure & a portfolio of innovative services/ facilities.
Role in project
OTE will participate to the activities for the security architecture design and will contribute to the user requirements analysis, usability and privacy aspects and functional specifications. OTE will also contribute to the definition, implementation and evaluation of the e-business pilot use case. Finally, OTE will support the broader scope of dissemination and exploitation activities.
InfoCert is the leading provider of trust based business solutions for organisations and businesses to interact online with customers and citizens, in compliance and at the highest trust levels.
InfoCert S.p.A incorporates an Italian Certificate Authority, with a liability for services requiring a EU level of assurance and trust – per eIDAS, 1 July 2016.
InfoCert’s trust based solutions are developed for increased security requirements, a high level of governance and cost efficiency. Key workflow components as approval, review and transactions can be executed fully online by InfoCert’s document workflow components, digital preservation, digital signature and registered e-mailing services. Our proposition enables every organization to digitise its business processes with simple, efficient, state-of-the-art solutions, which fully meet organizational needs, general regulatory constraints and specific sector rules.
InfoCert, with offices in Italy and United Kingdom, is a qualified partner for companies operating in verticals as Banking, Telco and Utilities.
InfoCert commitment to innovation is remarked by our collaboration with major European universities and research centers as well as by our active participation to several EU funded Horizon 2020 innovation projects.
InfoCert has an excellent track record regarding R&D producing cutting-edge solutions. One of the most successful innovations in the banking sector is onboarding a new customer by remote identification, called Trusted On-boarding Platform - TOP. A platform that allows new customers to be on-boarded online in less than ten minutes, using InfoCert’s patented solution issuing digital certificates. Once enrolled, a customer can sign any contract in a customer experience, which is easy, across any device and fully online. TOP solution has been patented and approved by all competent Regulatory Authorities.
In 2015, InfoCert delivered twenty TOP solutions to traditional and digital-born banks. For a short video presentation on TOP highlights, visit youtube.com and search for: ‘infocert, top, en’.
InfoCert ‘s annual revenues show a double digit growth rate year-on-year from 25 Mln € in 2012 to over 47 Mln € in 2015.
Our ISO 9001, ISO 27001 and ISO 20000 certifications demonstrate our commitment to the highest levels of service, compliance and safety.
Find out more on our website: https://www.infocert.it/international/.”
Role in project
The main role of InfoCert in CREDENTIAL is to implement and evaluate a pilot for the e-Business use case. Based on existing products, environments and research, InofCert will deploy and use a novel cloud based IAM to extend access control mechanisms for various services and personal data and attribute stores for customers.
Karlstad University is located in Värmland, Sweden and has around 12.000 undergraduate and postgraduate students, and just over 1100 staff. It offers 50 programs and 750 courses in the fields of humanities, health sciences, natural sciences, social sciences, education and technology. KAU specialises also on interdisciplinary research projects conducted by its research centre HumanIT (Human value of IT). HumanIT elaborates both human and technical aspects of IT in close cooperation with industry. The PriSec (Privacy and Security) research group at the Computer Science Department is specialised on research in IT security and privacy enhancing technologies, focusing especially on transparency-enhancing tools and usable privacy, in cooperation with the centre HumanIT. KAU’s Usability Lab includes Wizard of Oz Technology (“Ozlab”), which offers the possibility of mockup prototyping to test interactivity at an early stage, eye tracking with gaze control, a mirror window, and different small-screen wireless devices connected to lab equipment.
Role in project
Within the project, KAU will be responsible for the HCI research, user interface development and evaluation work. Besides, it will also contribute to Privacy by Design Guidance.
Klughammer is a worldwide leading developer and provider of telemedicine software, of telemedicine hardware and telemedicine consulting services. Klughammer is alised in planning, implementing, monitoring and evaluating telemedicine projects. Projects in Armenia, Brazil, Germany, Malawi, Mongolia, Switzerland and other countries were implemented and are actually supported by our company. Organisations like WHO, UNFPA, Millenium Challenge Project, Lux Dev, Swiss Surgical Team and others improve health services with our software. As people from KGH travel to those countries they have a high social competence and cultural sensitivity.
Role in project
Klughammer develops cloud-based telemedicine platforms. It is experienced in organising and in consulting partners in building up eHealth projects. Klughammer will develop a cloud-based eHealth platform, integrate encrypted technology, organise the use case and evaluate the outcome of the eHealth project.
Lombardia Informatica is a public-capital service company which has been constituted in December 1981 as an initiative of the Regional Government of the Lombardia (Regione Lombardia). It has around 630 employees and a turnover of about 200 million Euro. Lombardia Informatica’s mission is to innovate services and increase the Regional System’s productivity through Information Technology, in order to improve Citizen’s quality of life and Lombard companies’ competitiveness. As IT partner of Regione Lombardia, Lombardia Informatica designs and implements ICT Systems for the Regional Government and represents the unique interface between Regione Lombardia and the marketplace.
Role in project
LISPA main role in Credential project is provide pilot site for e-Government use case. LISPA large experience providing service for Lombardy Region Government and strong expertise in manage IDPC for 10 million Lombardy citizens. In 2013, the overall number of accesses to the regional services using the Lombardy Region IdPC was 5,6 million, mainly by citizens and public employees. In the first half of 2014 the access rate was 4,2 million (+70% increase compared to the same period of 2013).
Stiftung Secure Information and Communication Technologies” (SIC) is a non-profit foundation established by IAIK, TU Graz, to encourage independent scientific research, development as well as teaching and knowledge transfer in the fields of applied information processing, communication and information security. Cryptography for the Java™ platform is one of the core activities at IAIK/SIC. Already in 1997 we have released the initial versions of IAIK-JCE and iSaSiLk as two of the first crypto libraries for the Java™ platform that have ever been available. Since then we have continuously maintained, enhanced and extended our crypto toolkit suite for the Java™ platform. Today IAIK/SIC crypto software is an important part of many cryptographic applications and projects all around the world. Our crypto libraries are free of charge for educational and research purposes. For our customers we offer a comprehensive support program guaranteeing fast response times. Being provided by the software authors themselves, we can provide the most competent help possible. In addition to software development, Stiftung SIC is also actively engaged in research. We have also participated in many security- and PKI related research projects, and have taken part in European and world wide PKI and security standardisation activities. Stiftung SIC SIC also is one of the key players in the Austrian eGovernment scene.
Role in project
Fitting their expertise, Stiftung SIC will be mainly involved in WP5, architecture and implementation, and in WP7, standardisation and standard software enablement. In particular, Stiftung SIC will lead tasks 5.2, Security protocols API technical design specification and development, and 7.2, Liaison and Standardisation.