Skip to content
/ meusec Public

Das Software-Tool unterstützt die Anwendung der sogenannten Method for Enhancing User Experience and Information Security (kurz MEUSec). Damit lassen sich User Experience und Informationssicherheit von Wallets evaluieren.

License

Apache-2.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

fzi-forschungszentrum-informatik/meusec

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
Backend
Backend
 
 
Frontend
Frontend
 
 
LICENSE.txt
LICENSE.txt
 
 
README.md
README.md
 
 

Repository files navigation

Software Tool of the MEUSec Method

Website: www.meusec.de

Motivation:

Digital identity wallets (in short: wallets) simplify identity management by securely storing and sharing digital identities and verification documents. To ensure widespread adoption, they must offer both high information security and a seamless user experience (UX). Research shows that existing wallets struggle with both aspects. In addition, striking a balance between UX and information security is a challenge. Complex security mechanisms can compromise UX, while simplicity can introduce risks. Thus, UX and information security of wallets must be increased to a sufficient level together. It was not possible to identify a procedure that could be used to evaluate UX and information security.



Contribution:

The Method for Enhancing User Experience and Information Security (in short: MEUSec) was developed to evaluate and improve UX and information security of wallets. This software tool was developed to support the application of the MEUSec method.



Funding:

This software tool was developed as part of the two research projects SDIKA (Schaufenster Sichere Digitale Identitäten Karlsruhe, www.sdika.de) and SDI4ECom (Sichere und Selbstbestimmte Digitale Identitäten im E-Commerce, www.sdi4ecom.de). SDIKA was supported by the Ministry for Economic Affairs and Climate Action (BMWK) on the basis of a decision by the German Bundestag. SDI4ECom is funded by the Baden-Wuerttemberg Federal Ministry of Economic Affairs, Labor and Tourism.



How to get started:

To make the backend work, a MYSQL database must be created. For this purpose, the file ‘meusec_empty.sql’ under ‘Backend’ can be used to create the table structure. In the file ‘server.js’ in the ‘Backend’ folder, the CORS settings in the ‘app.use’ function must be defined. If you want to implement user management, the redacted functions in the file ‘server.js’ must be filled with a token encryption mechanism, e.g. JW-Tokens. The server can then be started with the standard React command ‘npm start’.

To get the frontend running, you have to adapt the ‘API_URL’ in the file ‘constants.js’ under ‘Frontend’ so that they access your own backend. The React app can then be started with the standard React command ‘npm start’.

About

Das Software-Tool unterstützt die Anwendung der sogenannten Method for Enhancing User Experience and Information Security (kurz MEUSec). Damit lassen sich User Experience und Informationssicherheit von Wallets evaluieren.

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages