MASTERÂ Assignment
digital identity: a cyber resilience evaluation of the European digital identity e-commerce requirements
Type : Master M-BIT
Period: Apr, 2021 - Nov, 2021
Student : Boer, S.O. de (Sebastiaan, Student M-BIT,M-CS,M-ES)
Date Final project: Nov 30, 2021
Supervisors:
Abstract:
E-commerce is a quickly expanding market, providing millions of clients with the goods and services that they require. Unfortunately, however, e-commerce cybercrime increases rapidly as well. The EU has proposed a digital identity system to link e-commerce accounts with their owners’ identity to improve the traceability of fraudulent activities. This master thesis evaluates the cyber resilience of the system requirements as set out by EU regulation 2015/1502. It evaluates this according to the principles of the ISO 31000:2018 approach with a stakeholder analysis, vulnerability analysis through a unified killchain method, and a threat capability assessment. In the system, five vulnerabilities are found related to malware defences, server capacity, employee access, employee intentions, and trust in system partners. The risks of the first four vulnerabilities are deemed to be too high to accept. Based on this assessment, several recommendations are made to address the risks found in the system.