While digital information sharing is well-protected with encryption technologies (SSL, OAuth, etc.), real-world interactions often involve excessive personal data disclosure whether it is showing identification, providing a driver’s license, or sharing social security numbers. Employees in critical sectors - such as power plants, hospitals, government institutions - are frequently required to share sensitive information outside their work environment, increasing vulnerability for both them and their organizations. This work explores solutions to minimize or fully mitigate data sharing, enabling verification with minimal disclosure and enhancing individual privacy. We will also examine use cases to demonstrate these concepts in practical scenarios. Given that personnel within critical infrastructure sectors can be targets for directed social engineering attacks, the proposed approach aims to reduce risks associated with sharing personal information that could indirectly compromise critical infrastructure security. This framework will suggest a protocol for secure data exchange managed through a central trusted authority, providing a streamlined and secure means of identity verification that limits the exposure of sensitive information.

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

Framework for Minimal Data Disclosure and Enhanced Security in Critical Infrastructures and Beyond

  • Boldizsár Bednárik,
  • László Gogolák

摘要

While digital information sharing is well-protected with encryption technologies (SSL, OAuth, etc.), real-world interactions often involve excessive personal data disclosure whether it is showing identification, providing a driver’s license, or sharing social security numbers. Employees in critical sectors - such as power plants, hospitals, government institutions - are frequently required to share sensitive information outside their work environment, increasing vulnerability for both them and their organizations. This work explores solutions to minimize or fully mitigate data sharing, enabling verification with minimal disclosure and enhancing individual privacy. We will also examine use cases to demonstrate these concepts in practical scenarios. Given that personnel within critical infrastructure sectors can be targets for directed social engineering attacks, the proposed approach aims to reduce risks associated with sharing personal information that could indirectly compromise critical infrastructure security. This framework will suggest a protocol for secure data exchange managed through a central trusted authority, providing a streamlined and secure means of identity verification that limits the exposure of sensitive information.