Introduction
Thesis work is an excellent way to get closer to Scania and build relationships for the future. Many of today's employees began their Scania career with their degree project, and you now have an exciting opportunity to explore Zero Trust principles and how they align with and apply to data security.

Historically, organizations have often operated multiple systems that interact with shared data repositories based on trust relationships (shared secrets and similar mechanisms). Over the years, we’ve seen a shift towards zero trust architectures with cyber security threats and regulatory requirements for data protection driving this need for new approaches to data security.

 

Objective 
The primary objective of this thesis is to design, implement, and evaluate a secure model for end-to-end user authentication and authorization in multi-system architectures based on zero trust principles. The specific goals include:

Enhancing Data Security: Demonstrate how the proposed model mitigates security risks associated with traditional trust-based inter-system communication, ensuring users can only access data they are authorized to view. Evaluating Performance and Scalability: Assess the impact of the new model on system performance and scalability, ensuring it meets organizational needs without introducing significant overhead. Providing Implementation Guidelines: Offer best practices and guidelines for organizations seeking to adopt similar models in their infrastructures.

 

Job description 
To achieve the objectives outlined above, we expect that you will do a comprehensive literature review, looking at existing authentication and authorization mechanisms in multi-system architectures. You will explore the principles of federated identity, token-based authentication, and Zero Trust Security models. By examining relevant security standards and protocols, as well as align with Scania’s IT security policies and best practices, you will arrive at a proposed architectural model.

As part of the thesis, you are expected to develop a prototype implementation of the proposed model using appropriate technologies and tools. You will also conduct security testing on the prototype to identify and address vulnerabilities.

Towards the end of the thesis, we expect that you will develop best practice guidelines for implementing zero trust models in similar environments, and provided recommendations for implementation.

 

Education
To be successful in this thesis work, we think that your background is in Computer Science.
Number of students: 1
Start date for the thesis work: 2025-01-13
Estimated time required: 4-5 months

 

Contact persons and supervisors
Jonas Öberg (Manager), jonas.oberg@scania.com

 

Application
Your application must include a CV, personal letter and transcript of grades 

A background check might be conducted for this position. We are conducting interviews continuously and may close the recruitment earlier than the date specified.