LinkedInTorsten Lodderstedt

Torsten Lodderstedt

Head of Development, Customer Platforms at Deutsche Telekom AG

Frankfurt Am Main Area, Germany
Information Technology and Services
  1. Deutsche Telekom AG,
  2. Dr.-Ing. Torsten Lodderstedt, IT Architect
  1. Deutsche Telekom AG,
  2. Syracom AG,
  3. Interactive Objects Software GmbH

Join LinkedIn & access Torsten’s full profile

Join LinkedIn and access Torsten’s full profile. It’s free!

As a LinkedIn member, you’ll join 300 million other professionals who are sharing connections, ideas, and opportunities.

  • See who you know in common
  • Get introduced
  • Contact Torsten directly
Deutsche Telekom AG

Deutsche Telekom AG

Head of Development, Customer Platforms


View full profile



Experiences and in-depth knowledge in software architectures, model-driven and agile software development, security, identity management (OAuth, Openid), and project management

Contributor to OAuth 2.0 Working Group (IETF) and OpenID Connect Working Group (OpenID Foundation)



Dr.-Ing. Torsten Lodderstedt, IT Architect
– Present (5 years 7 months)

Senior Product Owner Identity Management

Deutsche Telekom AG
(6 months)Darmstadt Area, Germany

Product Owner Identity and Customer Management

Deutsche Telekom AG
(2 years 2 months)Darmstadt

Principal Consultant, IT Architect

Syracom AG
(3 years 9 months)

Senior Consultant, Software-Architekt

Interactive Objects Software GmbH
(10 years 4 months)

PhD student

University Freiburg
(2 years)


OpenID foundation


Contributor OpenID connect

OpenID Foundation

Corporate Director


  1. German

    Native or bilingual proficiency
  2. English

    Professional working proficiency



OAuth 2.0 Threat Model and Security Considerations - RFC 6819(Link)

January 2013

This document gives additional security considerations for OAuth, beyond those in the OAuth 2.0 specification, based on a comprehensive threat model for the OAuth 2.0 protocol.


OAuth 2.0 Token Revocation - RFC 7009(Link)

August 2013

This document proposes an additional endpoint for OAuth authorization servers, which allows clients to notify the authorization server that a previously obtained refresh or access token is no longer needed. This allows the authorization server to clean up security credentials. A revocation request will invalidate the actual token and, if applicable, other tokens based on the same authorization grant.


Model Driven Security for Process-Oriented Systems(Link)

8th ACM Symposium on Access Control Models and Technologies, 2003.
June 2003

Model Driven Architecture is an approach to increasing the quality of complex software systems based on creating highlevel system models and automatically generating system architectures from the models. We show how this paradigm can be specialized to what we call Model Driven Security.
In our specialization, a designer builds a system model along with security requirements, and automatically generates from this a complete, configured security infrastructure.


SecureUML: A UML-Based Modeling Language for Model-Driven Security(Link)

5th International Conference on the Unified Modeling Language
September 2002

We present a modeling language for the model-driven development of secure, distributed systems based on the Unified Modeling Language (UML). Our approach is based on role-based access control with additional support for specifying authorization constraints.We show how UML can be used to specify information related to access control in the overall design of an application and how this information can be used to automatically generate complete access control infrastructures. Our approach can be used to improve productivity during the development of secure distributed systems and the quality of the resulting systems.



Passenger information and public address system New York City Transit’s subway network, USA(Link)

- Equipment of 13 lines and 156 stations with a fully redundant
rail control center
- public address system and customer information screen system (all IP based)
- distributed system across NYC
- my role: system security architect

View Torsten’s full profile to...

  • See who you know in common
  • Get introduced
  • Contact Torsten directly

Not the Torsten Lodderstedt you’re looking for? View more


People Also Viewed

LinkedIn Mitglieder in Deutschland:

  1. a
  2. b
  3. c
  4. d
  5. e
  6. f
  7. g
  8. h
  9. i
  10. j
  11. k
  12. l
  13. m
  14. n
  15. o
  16. p
  17. q
  18. r
  19. s
  20. t
  21. u
  22. v
  23. w
  24. x
  25. y
  26. z
  27. mehr