Home > People > Dr. Silke Holtmanns

Dr. Silke Holtmanns

Principal Member of Research Staff
Nokia Research Center

Background

I'm a principle member of research in the at Nokia Research Center (NRC) Helsinki in the Security and Networking Team, which was based on the former Trustworthy Communications and Identities Team. I moved to Finland and joined the Nokia Research Center in 2004 in the Mobile Computer Human-Interaction Competence Area and the Software and Applications Technology Lab. Prior to joining Nokia, I worked between 2000 and 2004 at Ericsson Research Department - Service Networks and Applications Technology. I hold a Ph. D. in Mathematics from the University of Paderborn, where I also worked as a scientific assistent bettween 1996 and 2000.

In 2009 my work focus shifted slightly from research to stronger customer interaction. This means in practise that I'm involved in a larger range of standardization bodies directly (3GPP Security, ETSI Smart Card Platform, GSMA Security) and indirectly (3GPP Requirements, RAN, etc) writing their specifications, desinging solutions and architectures, error fixes and introducing new approaches.

Part of my work is to discuss together with Nokia Siemens Networks with our mobile and fixed network customers directly to assist them solving their problems and designing solution approaches fitting their needs to support our customer account teams. On the other hand, I interface internal product units, developers and suppliers on security related aspects to ensure that their timings and functionalities meet the market and the upcoming specifications. This is a bidirectional interesting work, since product units raise then issues which need to be taken up with the customers and vice versa, which in its sum leads to the design of, for example, an operator specific application authentication architecture or a device internal architecture (OS / modem / secure element) or even down to the security architecture of a secure embedded element itself.

The area, that my work covers is very wide and often it happens that on a single day, I have to deal with security on the hardware security, smart card security, AS security, NAS security, network security, IMS security and on the application security (spam prevention, firewalls, app security, mobile web browser security).

Research Interests

 

  • Trusted embedded elements (in particular eUICC, UICC, MTM)
  • Secure provisioning architectures including mechanisms (architecture here means embedded secure element architecture, but I also cover the network architecture "counter-part" in my work)
  • Trusted and secure environments and the interaction with non-trusted components and networks
  • Evolution of LTE / EPS Security
  • Identity, credential and profile management techniques
  • Single Sign On methods and Web Services security (in particular Liberty and OpenID)
  • Wireless information security on different layers, radio, application and transport layer and their interaction
  • Lawfull interception aspects and legal requirements like security of public warning systems (earth quake and tsunami warnign systems)
  • Digital Rights Management methods
  • Trust and security of transaction systems
  • Authentication architectures in fixed mobile convergence (IMS security, including items like unsolicited communications)
  • Application security system design based on cellular credentials (GBA, GAA)
  • Privacy mechanisms for mobile environment e.g. for MDT
     

Personal Information

I'm married and have two daughters. My family web site is http://www.holtmanns.eu/

Education

2000 -- Ph.D in Mathematics from the University of Paderborn

1996 - 2000 -- Study stays at Universidad Politecnica de Valencia and the Universidad de alencia

1996 -- Degree Diplom Mathematikerin from the University of Paderborn

1990 – 1996 -- Study of Mathematics with secondary subject Computer Science at the University of Paderborn and the Heriot-Watt University Edinburgh (Scotland) and the EU study program TEMPUS in Debrecen and Budapest (Hungary)

1989 – 1990 -- Training year at Computer Aided Design - CAD Zeichensysteme Reintjes

1987 – 1989 -- Commercial College in Kempen (Höhere Handelsschule)

1985 – 1987 -- Commercial School in Kempen (Handelsschule)

1980 – 1985 -- Catholic Secondary School in Wachtendonk (Hauptschule)

Other Information

Public Projects and Standardization Activities

To make security happen, I believe it is important to "look over the fence" and work closely together with customers, universities, competitors and other industrial players. For this reason, I have been involved during my carrer directly or indirectly in many standardization and multi-partner projects.

Standardization Activities

I'm head of Nokia delegation in 3GPP SA3 Security. This is my main focus, but I'm also involved in other groups (e.g. CT1, CT4, SA1, OMA) activities related to my "core" specifications. I'm currently rapporteur of the following 3GPP Security Specifications and Reports (to be found at www.3gpp.org):

  • TS 33.220 Generic Bootstrapping Architecture
  • TS 33.221 Support for Subscriber Certificates
  • TS 33.223 GBA Push Function
  • TR 33.980 3GPP and Liberty Alliance Interworking
  • TR 33.920 SIM card based GBA
  • TR 33.905 Recommendations for trusted open platforms
  • TR 33.924 Identity Management and 3GPP Security Interworking (OpenID Interworking)
  • TS 55.236 Specification of A8_V MILENAGE Algorithm: An example algorithm for the key generation function A8_V
  • TR 33.804 (formerly TR 33.914) Single Sign On Application Security for Common IMS - based on SIP Digest 
  • TR 33.823  Security for using GBA from a web browser

Currently, I'm also actively working in:

ETSI Smart Card Platform and Requirement Group

GSMA Security Group

The list below outlines my involvement in various standardization bodies, some of them I'm still "fully" active, some of them I participated for some years, for some of them I only supported my collegues with regard to a specfic topic on a need basis.

Liberty Alliance Project

TISPAN (Telecoms & Internet converged Services & Protocols for Advanced Networks) - Security

Trusted Computing Group Mobile Phone Working Group

ITU, OMA / WAP Forum Security, e-Commerce, and some others ....

European Union and governmental funded projects

MoFS Mobile Financial Services (TEKES Project) 

SERENITY System Engineering for Security and Dependability Project

MobiLife Project

Ambient Networks

PAMPAS Project (EU Roadmap project, Pioneering Advance Mobile Privacy and Security)

3GET - 3G Evolving Techologies (funded by the German ministry of research and development - BMBF)

RAPID Roadmap for Advance Research in Privacy and IDentity Management

WWI Wireless World Initiative

EICTA (European Industry Association – Information Systems, Communications Security and Consumer Electronics) Trust and Security Area

Media Lab Europe (Dublin) and MIT (Massachusetts Institute of Technology, Boston)

Publications

Recently

I've been deeply involved in several standarization activies, external customer support, competitor negotiations, internal customer projects and product unit support activities.

2009

Silke Holtmanns, Günther Horn, Wolf-Dietrich Möller, "Identity Management in Mobile Communication Systems", book chapter in the Handbook of Communication Networks and Distributed Systems (editor Sudip Misra), World Scientific, Singapore (2009)

2008

Silke Holtmanns, N. Asokan, Philip Ginzboorg, Pekka Laitinen, Valtteri Niemi, "Cellular Authentication for Mobile and Internet Services - Overview and Application of the Generic Bootstrapping Architecture", Wiley (2008) (Amazon Link)

Zheng Yan, Silke Holtmanns, "Context Aware Adaptive Trust", Book Chapter in "Computer Security, Privacy and Politics" of Idea Group Inc (2008) (Link to publisher)

Zheng Yan, Silke Holtmanns, "Context Aware Adaptive Trust", Book Chapter in "Computer Security, Privacy and Politics" of Idea Group Inc (2008) (Link to publisher)  

2007

Silke Holtmanns,"Anwendungssicherheit und Identitätsmanagement", Digma, Zeitschrift fuer Datenrecht und Informationssicherheit (Journal for Data Protection and Information Security), September 2007.
 
Silke Holtmanns, Katri Sarkio, "Tailored Trustworthiness Estimations in Peer-to-Peer Networks", International Journal of Internet Technology and Secured Transactions (IJITST) 1, Inderscience (2007), pp 95 - 107, Discussion of the article.

Silke Holtmanns, Son Phan-Anh, "Access Authentication to IMS Systems in Next Generation Networks", 6th International Conference on Networking, ICN 2007, Sainte-Luce, Martinique.

Mika Klemettinen (editor), Göran Schultz, Johan Hjelm, Markus Miettinen, Silke Holtmanns et al, "Enabling Technologies for Mobile Services - The MobiLife Book", Wiley, 2007 (Amazon Link).

2006

Stefano Campadello, Silke Holtmanns, "Security Patterns in Mobile Communications", 1st International Workshop on Secure Information Systems (SIS’06), Wisla, Poland (accepted, but withdrawn)
 
Silke Holtmanns, Göran Schultz, "Mobile and Fixed Network Convergence -Authentication to IMS in Fixed Broadband Access Systems", Proceedings of ICIN Convergence in Service, Media and Networks, 2006, Bordeaux, France.
 
Stefan Campadello, Silke Holtmanns "Ambient Intelligence Software Architectures - a Service Oriented Architecture Approach", Ambient Intelligence Developments Conference (AmI), 2006, Sophia Antipolis, France.
 
Zheng Yan, Silke Holtmanns, "Context Aware Adaptive Trust", Ambient Intelligence Developments Conference (AmI), 2006, Sophia Antipolis, France.
 
Silke Holtmanns, Shreekanth Lakshemeshwar, Seamus Moloney, Katri Sarkio, "A role for the cellular network in improving the security of ubiquitous communications", 3nd International Workshop on Managing Ubiquitous Communications and Services (MUCS) Autonomic Pervasive Computing & Communications in cooperation with Pervasive 2006, Cork, Ireland.
 
Silke Holtmanns, Tomas Perlines Hormann, Konrad Wrona, "Evaluation of certificate validation mechanisms", Special Issue of Computer and Communications – Network Security, COMCOM 2688, (Elsevier)
 
Silke Holtmanns, "Trust and Security in Mobile Broadcast Systems", Proceedings of 11. Mobilfunktagung Technologien und Anwendungen Fachtagung (2006), VDE Verlag GmbH Berlin, (11th Mobile Communication Specialist Conference) Osnabrueck, Germany.
 
Johan Hjelm, Silke Holtmanns, "Privacy and Trust Visualization", Computer Human Interaction CHI 2006 Conference Proceedings and Extended Abstracts, New York, ACM Press, Montréal, Canada.
  
Oliver Coutant, Ronald van Eijk, Silke Holtmanns, "Sharing of preferneces and context in groups of mobile users", Computer Human Interaction (CHI 2006) Mobile Social Software Workshop, Montreal, Canada, Computer Human Interaction CHI 2006 Conference Proceedings and Extended Abstracts, New York, ACM Press 

2005

Silke Holtmanns, Katri Ylitalo, "Tailored Trustworthiness Estimations in Peer-to-Peer Environments", SECOVAL’2005, International Conference on Security and Privacy for Emerging Areas in Communication Networks in cooperation with the IEEE TC on Security and Privacy, Athens, Greece

Ronald van Eijk, Johan Hjelm, Silke Holtmanns, Göran Schultz, "Privacy Management Using Policy Decision and Enforcement - Single User Privacy and Sharing Data among a Group in a Distributed System", Wireless World Research Forum Meeting "Convergence & Seamless Mobility", Mobile Summit #15 (2005), Paris, France

Silke Holtmanns, Göran Schultz, "User Authentication to Services in Converging Mobile and Fixed Networks", Wireless World Research Forum Meeting "Convergence & Seamless Mobility", Mobile Summit #15 (2005), Paris, France

Stefan Campadello, Olivier Coutand, Christian del Rosso, Silke Holtmanns, Theo Kanter, Christian Räck, Bernd Mrohs, Stephan Steglich, "Trust and Privacy in Context-Aware Support for Communication in Mobile Groups", Context Awareness for Proactive Systems (CAPS) 2005, Helsinki, Finland

Olivier Coutand, Olaf Droegehorn, Klaus David, Petteri Nurmi, Patrik Floreen, Ralf Kernchen, Silke Holtmanns, Stefano Campadello, Theo Kanter, Miquel Martin, Ronald van Eijk, Renata Guarneri, "Context-aware Group Management in mobile environments" (paper 322), IST Mobile & Wireless Communications Summit 2005, Dresden, Germany 

2004

Frank Hartung, Silke Holtmanns, "Privacy Rights Management", 6th International Conference on Enterprise Information Systems – Wireless Information Systems (WIS-ICEIS 2004), Porto, Portugal

N. Asokan, Philip Ginzoborg, Silke Holtmanns, Pekka Laitinen, Valtteri Niemi, "Extending cellular authentication as a service", IEE Secure Mobile Communications Symposium, London, UK (2004)

Klaus-Dieter Bierstedt, Silke Holtmanns, "Weak holomorphy and other weak properties," Bull. Soc. Roy. Sci. Liège 72, 6 (2004), pp 377 – 381 

2003

J. Claessens, A. Fuchsberger, C. Guenther, S. Holtmanns, G. Horn, K. Howker, R.J. Huelsebosch, C. Mitchell, K. Paterson, B. Preneel, D. Schellekens, and M. Schuba, "Pioneering Advanced Mobile Privacy and Security" Special Addendum to the Proceedings of the 18th IFIP International Information Security Conference (SEC 2003).

Silke Holtmanns, "Mobile Web Service Security", Journal of Information Warfare (2003).

J. Claessens, A. Fuchsberger, C. Guenther, S. Holtmanns, G. Horn, K. Howker, R.J. Huelsebosch, C. Mitchell, K. Paterson, B. Preneel, D. Schellekens, and M. Schuba, "Pioneering Advanced Mobile Privacy and Security" Chapter in Security for Mobility, editor Chris Mitchell, IEE Publishing (2003).

Silke Holtmanns, "Mobile Web Service Security" Proc. of the 2nd European Conference on Information Warfare and Security (ECIW 2003) 

2002

Silke Holtmanns, Marcin Toczydlowski, "Private mail retrieval by searching on encrypted data in an untrusted domain" in Proc. The First International Workshop on Wireless Information Systems at the 4th International Conference on Enterprise Systems (WIS ICEIS 2002)

Silke Holtmanns, "Privacy in mobile environment" in Proc. of the 13th International Conference and Workshop on Database and Expert Systems Applications (DEXA’02) - Trust and Privacy in Digital Business (TrusBus)

Silke Holtmanns, Marcin Toczydlowski, "Confidential mobile mail retrieval" in Special Issue of Computer and Communications - Ubiquitous Computing (Elsevier) Volume 26, Issue 11, (2002), pp 1219-1224 

2001

Martin Gerdes, Silke Holtmanns, "Mobile payment solutions", Towards the E-Society, Proceedings of the First IFIP Conference: E-Commerce, E-Business, and E-Government (I3E) (2001), Kluwer Academic Publishers, pp 629 – 642 

2000

Silke Holtmanns, Ph. D. Thesis, "Operator representation and biduals of weighted function spaces"
 
Klaus-Dieter Bierstedt, Silke Holtmanns, "An operator representation for weighted inductive limits of spaces of vector valued holomorphic functions", Bull. Belg. Math. Soc. 7 (2000) pp 1-13  

1999

Klaus Dieter Bierstedt, Silke Holtmanns, "An operator representation for weighted spaces of vector valued holomorphic functions", Results in Mathematics 36 (1999) pp 9 – 20 

1996

Silke Holtmanns, Diploma Thesis "Regularity in inductive limits and spaces of holomorphic functions with growth conditions"

Reviewer and Program Committee

I've been in the PC for many conferences and acted as a reviewer for many journals and book proposals.  

Patents

I'm co-inventor and inventor of many protected ideas and enjoy very much developing the ideas together with my collegues and make them happen. If you are interested in that part, please use one of the publicly available patent search tools, there is only one Silke Holtmanns. Note, that there is a 18 month "blackout" period after filing a patent application i.e. the patent application information is visible earliest 18 month after filing it. Please consider that not every patent application grows into a full patent (e.g. due to changing business needs) and it takes often more then 5 years until a patent application becomes a patent.