My field of functions at the SCC was located within projects regarding the establishment and expansion of the KIT-wide Identity & Access Management (IAM) and also regarding the development of managed and integrated IT-services. These tasks have been fulfilled as part of the KIM-project, as well as the projects IT4Integration and bwIDM (click here for a project flyer) and were the area of responsibility of the SCC department DEI. The projects were geared towards aggregating heterogeneous systems in an integrative manner and towards providing its services to students and employees of the KIT and of other institutions of the state of Baden-Württemberg. For instance, I was engaged in the establishment of a SAML-based, central authentication service as well as a central delivery of user attributes on the basis of Shibboleth and its transition to operation. Here, the goal was to establish an Identity Provider for the KIT and extend this component to meet KIT-specific requirements, as well as to integrate also non web-based systems, such as HPC and Cloud infrastructures (see publications).
Besides the establishment and development of integrative software solutions for the KIT, I was interested in the research area of Online Social Networks (OSNs). Thereby, the goal was to develop innovative solutions that are suitable to make privacy risks visible to OSN-members. In order to empirically investigate the proliferation of personally identifiable information (PII) and third parties' possibilities to link published data, as well as to infer non-provided information of a single OSN user, we implemented a web-crawler. It has the ability to evaluate the possibilities to correlate data from miscellaneous OSNs in a compliant manner with respect to the German data protection acts (see Publications). Initially, the goal of this study was to assess the risk of the publicity of published PII. Furthermore, we designed and implemented measures that support users in performing accurate risk management in order to configure privacy settings in an adequate manner.
My dissertation titled "Avoiding Unintended Flows of Personally Identifiable Information - Enterprise Identity Management and Online Social Networks" has been published by the KIT Scientific Publishing in 2013.