publications

2023

1. Best Current Practice for Workload Identity

   Benedikt Hofmann, and Hannes Tschofenig

   Oct 2023

   Work in Progress

   Abs Bib

   The use of the OAuth 2.0 framework for container orchestration systems poses a challenge as managing secrets, such as client_id and client_secret, can be complex and error-prone. "Service account token volume projection", a term introduced by Kubernetes, provides a way of injecting JSON Web Tokens (JWTs) to workloads. This document specifies the use of JWTs for client credentials in container orchestration systems to improve interoperability in orchestration systems, to reduce complexity for developers, and motivates authorization server to support RFC 7523.

   @techreport{hofmann-wimse-workload-identity-bcp-00,
     number = {draft-hofmann-wimse-workload-identity-bcp-00},
     type = {Internet-Draft},
     institution = {Internet Engineering Task Force},
     publisher = {Internet Engineering Task Force},
     note = {Work in Progress},
     url = {https://datatracker.ietf.org/doc/draft-hofmann-wimse-workload-identity-bcp/00/},
     author = {Hofmann, Benedikt and Tschofenig, Hannes},
     title = {{Best Current Practice for Workload Identity}},
     pagetotal = {10},
     year = {2023},
     month = oct,
     day = {10},
   }

2022

1. Towards achieving confidentiality in Hyperledger Fabric

   Benedikt Hofmann, Prabhakaran Kasinathan, and Martin Wimmer

   In IEEE International Conference on Blockchain, Blockchain 2022, Espoo, Finland, August 22-25, 2022, Oct 2022

   Bib HTML PDF

   @inproceedings{DBLP:conf/blockchain2/HofmannKW22,
     author = {Hofmann, Benedikt and Kasinathan, Prabhakaran and Wimmer, Martin},
     title = {Towards achieving confidentiality in Hyperledger Fabric},
     booktitle = {{IEEE} International Conference on Blockchain, Blockchain 2022, Espoo,
                    Finland, August 22-25, 2022},
     pages = {384--391},
     publisher = {{IEEE}},
     year = {2022},
     url = {https://doi.org/10.1109/Blockchain55522.2022.00060},
     doi = {10.1109/Blockchain55522.2022.00060},
     timestamp = {Tue, 04 Oct 2022 22:39:16 +0200},
     biburl = {https://dblp.org/rec/conf/blockchain2/HofmannKW22.bib},
     bibsource = {dblp computer science bibliography, https://dblp.org},
   }

2021

1. Privacy Enhancing Audit Trail in Hyperledger Blockchain

   Benedikt Hofmann

   Oct 2021

   Bib PDF

   @mastersthesis{Benedikt2021,
     author = {Hofmann, Benedikt},
     title = {Privacy Enhancing Audit Trail in Hyperledger Blockchain},
     type = {masterthesis},
     pages = {130 Seiten},
     institution = {Hochschule f{\"u}r angewandte Wissenschaften Kempten},
     publisher = {Hochschule f{\"u}r angewandte Wissenschaften Kempten},
     year = {2021},
   }

2. Secure Remote Maintenance via Workflow-Driven Security Framework

   Prabhakaran Kasinathan, Davide Martintoni, Benedikt Hofmann, and 2 more authors

   In 2021 IEEE International Conference on Blockchain, Blockchain 2021, Melbourne, Australia, December 6-8, 2021, Oct 2021

   Bib HTML PDF

   @inproceedings{DBLP:conf/blockchain2/KasinathanMHSW21,
     author = {Kasinathan, Prabhakaran and Martintoni, Davide and Hofmann, Benedikt and Senni, Valerio and Wimmer, Martin},
     editor = {Xiang, Yang and Wang, Ziyuan and Wang, Honggang and Niemi, Valtteri},
     title = {Secure Remote Maintenance via Workflow-Driven Security Framework},
     booktitle = {2021 {IEEE} International Conference on Blockchain, Blockchain 2021,
                    Melbourne, Australia, December 6-8, 2021},
     pages = {29--37},
     publisher = {{IEEE}},
     year = {2021},
     url = {https://doi.org/10.1109/Blockchain53845.2021.00016},
     doi = {10.1109/Blockchain53845.2021.00016},
     timestamp = {Mon, 31 Jan 2022 14:35:12 +0100},
     biburl = {https://dblp.org/rec/conf/blockchain2/KasinathanMHSW21.bib},
     bibsource = {dblp computer science bibliography, https://dblp.org},
   }