Funded in 2019 – The Vietsch Foundation funds a study by the European Campus Card Association (ECCA) that will encompass requirements for cross-border trusted student eID credentials, and provide recommendations for a trusted student eID framework to support the provision of secure identification and authentication on a cross-border basis in Europe.
The study started on 10 September 2019 and will end in May 2020 with the publication of a report surveying state of the art and business aspects and issuing recommendations for the establishment of a cross-border Student eID Project.
Funded in 2019 – The project aimed to create and develop the software application programming interface (API) and perform the necessary integration and validation steps for the DKS hardware security module, the Diamond-HSM™, to support and function with the Microsoft CryptoAPI (often referred to as “CAPI”). Developing this integration to communicate with the Microsoft operating system will dramatically increase the reach of security solutions among non-profit higher education networks driving scientific research and innovation.
In partnership with the Vietsch Foundation, Diamond Key Security (DKS) is excited to make available under a permissive BSD clause 3 open-source license software, software installation, and related documentation to enable DKS and CrypTech solutions to integrate with and support Windows networking environments.
The installation documentation provides information and instructions so that the software can be installed in a Windows network environment for either usage for signing by a Windows Certificate Authority (CA) (for various applications like DNS) or for a developers utilizing Diamond-HSM solutions or CrypTech solutions.
The Vietsch Foundation has decided to fund a new project under the NLnet Research and Higher Education Technology Fund :
Algorithms are the technological solution to the information overload: they are as powerful as necessary to manage the overflow of data that reaches us. Unfortunately, they can also conceal the existence and use of assessments and judgments that impact the dissemination of ideas and culture. No one should be allowed to abuse such power over connected people. At this stage, consent is nor informed nor optional.
The main objective of the project is to put a spotlight on users’ tracking, profiling, on the data market and on the influence of algorithms. As long as these phenomena are shielded from view or understood only by experts, they cannot be tackled with the political determination that problems of such magnitude deserve. That is why we strive to explain the issue, test and promote new solutions, developed to benefit the community.
Project URL https://tracking.exposed/
Funded in 2018 – The project aims to build a user-friendly connected telemetry appliance with just enough configuration to teach democratic communication while keeping the learning curve flat. The main deliverable will be a Opensource design of cheap yet high performance LoRa devices in form factors appropriate for one low-power platform (like BBC Micro:bit) and one high-power platform (like Minnowboard Turbot). Work will include a sample production run of 1000 units for one of the form factors and suitable documentation for educational purposes. This project is jointly supported by the Vietsch Foundation and the NLnet Foundation.
Funded in 2018 – Open source technical solutions for analyzing, recommending, and querying open educational materials within the context of higher education. This collaborative project between the Web Information Systems group of TU Delft and FeedbackFruits, aims at piloting new and more effective access paradigms for Online Open Courseware. In most cases, online educational material is intended to be consumed in a traditional course-based manner. The project is working on making access to educational material easier, targeted and direct, re-usable and more tailored to life-long learning scenarios.
Project URL https://explain.direct/
Funded in 2018
– The Referoo project aims to create a set of tools to address some of the most critical inefficiencies of the traditional peer-reviewing process of scientific publications. In particular, it will build a web portal for managing the refereeing tasks of researchers. The portal will be designed in such a way as to encourage referees to perform their duties conscientiously and efficiently, and provide them with clearer incentives. At the same time, the portal will implement tools to avoid the inefficiencies and the work duplication of the usual refereeing process.
Funded in 2017
– eduVPN is an initiative to make VPN technology commonly available, by building better and more user-friendly tools.
We live in a society that wants to be online whenever possible, and WiFi is popular technology for achieving this. Unlike the “home” situation which could be described as a trusted network, we also make heavy use of public offerings of WiFi, which we describe as guest networks, and which are in a special position that could make them perform a number of rogue attacks on our connections.
A number of dangers of using WiFi on such guest networks has been identified, and methods of running a trusted network over such potentially rogue connections have been devised. EduVPN is an implementation of such facilities which was originally designed with educational institutions as an audience.
Funded in 2017
– Searsia is an open source engine and a protocol, created by academic researchers. The Searsia software is open source and available from the Searsia project website.
Searsia provides the means to create a personal, private, and configurable search engine, that combines search results freely from a very large number of sources. Searsia enables existing sources to cooperate such that they together provide a search service that resembles today’s large search engines. In addition to using external services at will, you can also use it to integrate whatever private information from within your organisation – so your users or community can use a single search engine to serve their needs.
Using Searsia you can :
* Manage and share large collections of independent sources;
* Select for each query the most relevant sources;
* Combine sources in an aggregated search interface;
* Searsia learns over time what kind of information each source provides.
To see it in action check the search engine of the University of Twente that combines the results of about 30 sources, including results from Google’s web crawl, from Courses, from News, the Telephone directory, the Timetables, as well as results from social media, such as Facebook, Twitter, Pinterest, and Flickr.
Funded in 2016
– Federated Identity Management (FIM) is being used increasingly for different Internet applications, including web and mobile. The demand for cross-organizational collaboration and the proliferation of cloud applications is driving the demand to federate identities. To support FIM there are two main protocols established: SAML and OAUTH2/OIDC, with SAML being used in the majority of use cases for cross-organizational collaboration.
Interoperability between products for FIM, in particular commercial offerings, is still an issue 11 years after the SAML V2 standard was published. Many products lack conformance to the SAML profiles used in federations, leading to extra effort in the integration process. While standards and specifications are available, implementations frequently do not follow these.
There are no comprehensive testing suites available that would provide the metrics to get better. The GÉANT project had funded initial efforts to remedy this situation, which resulted in a proof of concept implementation of a SAML2 test tool, published at Federation Labs (www.fed-lab.org). In the meantime, related test suites have been developed for OIDC has just been initiated.
This project is underway to take FedLab from its current status as a research project and bring it towards service operation. This phase will focus on making a comprehensive test suite available at Federation Labs, which features an improved architecture that will allow improved flexibility in test configurations and easier to use for deployers. It shall establish a community process by being open source, allowing users to contribute and improve test cases and profiles.
As a result, we expect to improve the conformance of products to increase and show clearly where products are failing to meet the profile. Improvements will trickle down in implementations and make federation integration quicker and cheaper. For the end user, access to external resources without giving up security and data protection will proliferate.