EU Data Spaces
Cyber Security
Semester programme:Cyber Security Professional
Research group:Cyber Security
Project group members:Rens R.J. vanDijk
Rashidah R.Namubiru
Jelle J.B.M.Teurlings
René R. vanThoor
Esra E.Ulu
Remco R.J.S.Wouters
Project description
Project Aim: define a compact Domain-Specific Language (DSL) that lets security engineers declare what must be traced (assets, actors, events, constraints, obligations, retention, etc.) and then generate Python components that integrate with existing systems (Keycloak, Azure AD, API gateways, microservices) to collect tamper-evident traces and reconstruct provenance chains for auditing and misuse detection. The product owner is Bartosz Paszkowski (coach, and coordinator advanced software) research in the Data Space research project. Also see the description:
Context
Project Aim: define a compact Domain-Specific Language (DSL) that lets security engineers declare what must be traced (assets, actors, events, constraints, obligations, retention, etc.) and then generate Python components that integrate with existing systems (Keycloak, Azure AD, API gateways, microservices) to collect tamper-evident traces and reconstruct provenance chains for auditing and misuse detection. The product owner is Bartosz Paszkowski (coach, and coordinator advanced software) research in the Data Space research project. Also see the description:
Results
---
About the project group
Our project group consists of five Cyber Security Professional students at Fontys ICT Eindhoven. The project was carried out during a full-semester program, with team members dedicating approximately four days per week to research, design, development, testing, and validation activities.
The team worked using an iterative and research-driven approach. Requirements and technical concepts were explored through literature studies, stakeholder feedback, prototyping, and validation sessions. Tasks were divided according to expertise while maintaining close collaboration through regular planning, review, and evaluation meetings.
The project combines cyber security, software engineering, data governance, and provenance tracking concepts. Throughout the project, the team focused on translating complex security and compliance requirements into a practical solution that can be integrated into modern distributed systems and Data Space environments.