OPTIMOS – a practical ecosystem of secure identities for mobile services

optimos

Providers of digital services, such as car sharing or mobile phone companies, airlines or transport companies, want to use their customers' smartphones to securely store application-specific data. Up to now, however, they have had to make compromises when it comes to security. This is all set to change thanks to the OPTIMOS project funded by the Federal Ministry of Economics and Energy (BMWi).

Mobile services have become an indispensable part of our digitalized world: Airlines send customers their boarding passes directly to their mobile phones, public transportation companies offer digital tickets for smartphones and car sharing companies transmit the digital car keys to their customers by SMS or app. Up to now, secure storage of this application-specific data on the customer's smartphone has been a complex challenge for any service provider. That’s because different types of mobile phones and mobile phone providers result in an enormous degree of hardware heterogeneity.

The OPTIMOS project aims to create a platform that relieves service providers of the difficult part while at the same time enabling hardware-supported security. Service providers would dock on via an interface to the so-called "Trusted Service Management" platform (TSM) which would then manage storage of the data in the respective hardware security element on the customer's smartphone.

The special features of OPTIMOS

The OPTIMOS project, which will run until summer 2020, is creating an infrastructure for mobile services that fully meets the criteria of an open and practical ecosystem:

  • The OPTIMOS ecosystem is to be accessible to service providers and technology suppliers on a non-discriminatory basis
  • Customers are to be able to choose between as many service providers as possible
  • National and European requirements relating to IT security and data protection are to be fully supported

In addition to Bundesdruckerei, there are 19 other partners involved in this project. Your company can also take part in the project. Please contact optimos [at] bdr.de under the keyword "Verwertungspartner".

Supported by BMWi

Bundesdruckerei is leading the project, which is sponsored by the Federal Ministry of Economics and Energy (BMWi) and part of the Smart Service World II technology programme.

Focus on IT security and data protection from the outset

The project aims to proactively implement IT security and data protection according to the principles of "Security by Design", "Privacy by Design" and "Privacy by Default". In doing so, the project is also picking up on the main objectives of the government’s coalition agreement. At the same time, OPTIMOS is to develop and demonstrate a system that fulfils the “substantial” assurance level requirements of the eIDAS Regulation. That’s why a "Secure eID" app is to be developed with an eID service that will support identification and authentication as well as the transfer of identity data.

Incorporation into international standards

The specifications developed in OPTIMOS are to be incorporated into international standards. This will show that their use is not limited to Germany alone, but that they can be applied on a global scale.

In addition to Bundesdruckerei, the following partners are also participating in the project:

Project partners:

  • Cantamen GmbH, Freie Universität Berlin, Giesecke+Devrient Mobile Security GmbH, KAPRION Technologies GmbH, NXP Semiconductors Germany GmbH, Technische Universität Dresden, T-Systems International GmbH

Associated project partners:

  • Bundesamt für Sicherheit in der Informationstechnik, Berliner Verkehrsbetriebe AöR, Governikus GmbH & Co. KG, Infineon Technologies AG, Deutsche Hospitality (Steigenberger Hotels AG), Samsung Electronics GmbH, Sony Europe Limited (Germany Branch), Telefonica Germany GmbH & Co. OHG, Telekom Deutschland GmbH, VERIMI GmbH, VBB Verkehrsverbund Berlin-Brandenburg GmbH, Vodafone GmbH
Identitäts- und Rechtemanagement

Innovative identity and rights management

Greater transparency, security and responsibility for company staff – that’s what Bundesdruckerei's identity and rights management is aiming to achieve.