Titulo Estágio
Risk Management in Blockchain-based Systems
Áreas de especialidade
Comunicações, Serviços e Infraestruturas
Engenharia de Software
Local do Estágio
Laboratório de Comunicações e Telemática - CISUC, Dep. de Eng. Informática, Universidade de Coimbra
Enquadramento
EU’s General Data Protection Regulation (GDPR) set a new mandatory step on the path toward the establishment of any ecosystem platforms as well as a unique opportunity to leverage a cross border standard. It was ratified by mid-2016 and started being applied by member states on May 2018. As of this date, all public and private organizations selling goods or services or indeed collecting and processing personal data of individuals residing in the EU, regardless of the company’s physical location, must be compliant. They will be directly accountable to those whose data they process. With new requirements for organizations and new rights for individuals, there is no doubt that the GDPR will have a significant impact on both individuals and Internet service providers that process Personal Identifiable Information. In fact, while from one side the GDPR entails different obligations for those companies, on the other side it has been designed to enable individuals to better control their personal data and eventually improve the trust.
Keeping with this, the POSEIDON European project, within which scope this work will be carried out, will develop and deliver an innovative intrinsically scalable platform, namely the Privacy Enhancing Dashboard for personal data protection, as an integrated and comprehensive solution aimed to safeguard the rights of data subjects (i.e. all those natural persons that represent the primary target of the new GDPR), as well as support organizations in data management and processing while ensuring GDPR compliance. The Privacy Enhanced Dashboard will integrate cutting edge technologies and towards the organizations accountability and GDPR compliance as far as data processing and exchange is concerned. Also, it will contribute to help organizations in the guarantee of fundamental rights of data subjects. For this, a set of technologies will be used, of which blockchain will be one of the main ones.
Objetivo
In the context of this MSc thesis, the student will work on the development of a Risk Management module that will be used to monitor all warnings generated by the POSEIDON blockchain platform. The adopted permissioned blockchain network solution enables all the participants in the network have the ability to restrict who can access the data and who participate in the “verification” mechanism of the blockchain’s network. The Risk Module will analyze historical data logs to identify patterns of traffic
caused by user behaviors, both normal and malicious. These activities, based on User Behavioral Analysis (UBA) approach, will not take action based on their findings but are intended to provide security teams with actionable insights.
Plano de Trabalhos - Semestre 1
- Study of the POSEIDON description of work
- Study of the State of the Art
- Study of base technologies and tools
- Set-up of the development environment
- Identification of requirements and specification
- First prototype of main components
Plano de Trabalhos - Semestre 2
- Components implementation and integration
- Testing and validation
- Evaluation and assessment
- Integration with other POSEIDON modules
- Documentation
Condições
- Interest in Information and Infrastructure Security
- English level B1 or higher
- Dynamism and proactivity
Observações
Estágio Co-Orientado pelo Prof. Fernando Boavida Fernandes
Orientador
Paulo Alexandre Ferreira Simoes
psimoes@dei.uc.pt 📩