Spreading cloud security over many shoulders
Bundesdruckerei uses the RAIC principle for the first time for cloud computing
New BDrive solution to be presented at CeBIT
Secure Industry 4.0 forms the focus of the company's booth
Another highlight: Authentication with gestures and movements
Berlin - IT security company Bundesdruckerei presents its new cloud storage solution at CeBIT 2017 (hall 7, booth E17). The BDrive platform breaks up the data encrypted by the user into separate fragments that reveal nothing about the original. These document parts are then stored several times over with independent cloud providers. For the first time, BDrive uses the RAIC (Redundant Array of Independent Clouds) security concept that is based on the RAID (Redundant Array of Independent Disks) principle used in data storage. The redundancy that is deliberately generated with RAID is now being used in cloud computing. "BDrive combines the best of both cloud worlds: it is as flexible and simple as a public cloud but also as secure as a private cloud," says Ulrich Hamann, CEO of Bundesdruckerei. "BDrive makes dividing up and storing the data in the cloud easy, secure and compliant."
The solution is particularly suitable for secure collaboration between different company sites and with external partners. It targets companies and public authorities who place extremely high demands on data security and protection. BDrive can be used on all widely used desktop platforms and mobile devices, and also via standard web browsers. This comprehensive solution will be available in summer 2017. Beginning the end of March, customers will be able to test the current version.
With BDrive, the file to be stored is encrypted at the user's workplace; individual data packages are then generated and distributed usually to five commercial, established cloud storage services. The customer can always choose which storage services are to be used for the respective documents. The data is not stored on Bundesdruckerei's servers. When the data is accessed, the individual fragments are combined again to form the original file. The data is stored redundantly on the servers and this means that no data is lost, even if several cloud storage services fail. Distributing the individual data fragments to separate providers also means that it is not possible to intercept complete files or to draw any conclusions regarding the original data. Even Bundesdruckerei can never access or view the customer's data. BDrive also offers advanced identity and authorisation management as well as detailed access rights.
Behaviour-based authentication is another innovation highlight to be presented by Bundesdruckerei at CeBIT. This method needs neither passwords nor special security tokens. Developed at Hasso-Plattner Institute in Potsdam, this system authenticates users based on every-day, individual gestures and movements. This is carried out using devices that nearly everyone has: smartphones and smart watches. The sensors in the devices measure the length of the user's steps, for instance, how the user turns their hip when walking or how they take their smartphone out of their trouser pocket. A typical profile is created that is unique to the user. This is then compared with the stored user profile and a so-called trust level is calculated that shows the probability of the current user also being the stored user. If the level reaches a previously defined value, the user is then automatically considered to be authenticated.
At this year's exhibition, Bundesdruckerei will present a holistic concept for Industry 4.0 comprising consultancy services, products and solutions. The company's booth is centred around a mini factory with components that are connected to each other. This forms the hub for central security aspects of applications for Industry 4.0, the so-called Fourth Industrial Revolution. Smart system solutions respond independently and specifically to errors and attacks. Bundesdruckerei and its subsidiary genua will present practical solutions that ensure high firewall protection and risk-free remote maintenance. Visitors will also discover the connection between secure identities and Industry 4.0 and see how certificates can be used to protect digital identities. Mr Hamann: "For Industry 4.0 to work, reliable identification of all stakeholders is essential: employees, machine and workpieces."
Spreading cloud security over many shoulders
File size: 42.64 KB