Title :
TrustBox: A Security Architecture for Preventing Data Breaches
Author :
Schmidt, Matthias ; Fahl, Sascha ; Schwarzkopf, Roland ; Freisleben, Bernd
Author_Institution :
Dept. of Math. & Comput. Sci., Univ. of Marburg, Marburg, Germany
Abstract :
In this paper, a novel approach to prevent accidental or deliberate data breaches is presented. The proposed approach provides platform, network and offline security. Data is categorized as sensitive or insensitive, and the corresponding applications are isolated by using virtualization technology. Data theft or accidental loss is prevented by encrypting virtual hard disks and by introducing a multi-lane network architecture. If no connection to a corporate network is available, an offline mode handles data transfer and encryption. Authentication is managed by applying a biometric feature vector in association with a smart card setup. The approach increases security without disrupting the everyday work routines of users. An implementation based on Virtual Box and Java Card is presented. A performance evaluation of the critical components is provided.
Keywords :
Java; biometrics (access control); computer network security; cryptography; hard discs; message authentication; virtualisation; JavaCard; TrustBox; VirtualBox; accidental data loss; biometric feature vector; corporate network; data authentication; data breaches prevention; data transfer; multilane network architecture; network security; virtual hard disks encryption; virtualization technology; Computer architecture; Encryption; Hard disks; Operating systems; Virtual machining; Biometric; Data Breach; JavaCard; Virtualization;
Conference_Titel :
Parallel, Distributed and Network-Based Processing (PDP), 2011 19th Euromicro International Conference on
Conference_Location :
Ayia Napa
Print_ISBN :
978-1-4244-9682-2
DOI :
10.1109/PDP.2011.44
