SINNODIUM — Adaptive and Understandable Security for Mobile Devices
In the consortium project SINNODIUM (“SoftwareINNOvationen für das DIgitale UnternehMen”, i.e., Software Innovations for the Digital Company), small and medium-sized as well as large software companies are collaborating with research partners to develop integrated usage scenarios for emergent business software in the areas Smart Retail (trade), Smart Production (industry), and Smart Services (services and logistics). The project is an undertaking in the context of the Software-Cluster, a consortium of 32 partners from industry and research that aims to create an infrastructure for the market launch of business software services that can be combined with each other in a simple and easy manner. In the context of this project, the research performed by Fraunhofer IESE focuses, among other things, on methods and techniques for securely integrating mobile devices into business software, addressing primarily the aspects context awareness and usability by the user. The adaptation of security policies on the basis of context information (e.g., “in the office”, “traveling”, “at the customer”, or “privately at home”) is being examined in order to be able to prevent unintentional or malicious disregard of security policies more effectively. A mobile device could, for example, automatically detect that the company premises are being left and then block all data that are only intended for internal use within the company. In addition, ways and means are being studied to improve the understandability and usability of security requirements for mobile devices particularly for non-IT experts, starting with intuitive metaphors for the available security options via catchy wording of security policies to tools that facilitate the creation and evaluation of security policies and allow even the casual user to use these comfortably.