Security of Estonian ID card software distribution and update mechanisms

Organisatsiooni nimi
Cybersecurity
Kokkuvõte
As of 2019, the Estonian ID card software is used in approximately 600 000 computers, therefore the security of the software is of great importance to Estonian society.
From the security perspective, it is important to not only ensure that the software has no flaws, but to also ensure the security of the process by which the software is delivered to the end-user's computer.

The aim of this work is to study the security of the ID card software distribution and update mechanisms.

Possible research questions:
- What are the most popular channels from which the ID card software is installed?
- What security measures are used to provide integrity and authenticity of installation files?
- What update mechanisms are provided and how do they work?
-- How frequently are automatic updates checked?
-- How is the integrity and authenticity for updates provided?
-- Are downgrade attacks possible?
-- Is there a kill switch functionality? How does it work?
-- What update mechanisms have been historically used over the years?
Lõputöö kaitsmise aasta
2019-2020
Juhendaja
Arnis Paršovs
Suhtlemiskeel(ed)
inglise keel
Nõuded kandideerijale
Tase
Märksõnad
#acs

Kandideerimise kontakt

 
Nimi
Arnis Paršovs
Tel
E-mail
arnis@ut.ee
Vaata lähemalt
https://acs.cs.ut.ee/