PRISMACLOUD
Privacy and Security Maintaining Cloud Services
With a current volume of over USD 100 billion and annual growth rates of over 10%, the world-wide market for cloud computing can be considered as the major growth area in ICT. However, big companies and public authorities are reluctant to entrust their most sensitive data to external parties for storage and processing. The reason for their hesitation is clear: There exist no satisfactory approaches to adequately protect the data during its lifetime in the cloud. PRISMACLOUD addresses these challenges and yields a portfolio of novel security enabled cloud services, guaranteeing the required security for sensitive data in the cloud.
Techniques for outsourcing computation with verifiable correctness and authenticity-preservation allow to securely delegate computations to cloud providers. A distributed multi-cloud data storage architecture shares data among several cloud providers and improves security and availability. Dynamically updating shares by means of novel techniques avoids vendor lock-in, preserves data authenticity, facilitates long term privacy and promotes a dynamic cloud provider market. Claims about the secure connection and configuration of the virtualized cloud infrastructures and properties of cloud topologies are verifiable by means of cryptographic techniques. User privacy issues are addressed by data minimization and anonymization technologies due to the application of privacy-preserving cryptographic techniques. As feasibility proof, three use cases from the fields of SmartCity, e-Government, and e-Health, will be implemented and evaluated by the project participants.
The PRISMACLOUD work program is complemented with activities addressing secure user interfaces, secure service composition, secure implementation in software and hardware, security certification, and an impact analysis from an end-user view. In order to converge with the European Cloud Computing Strategy, a strategy for the dissemination of results into standards is developed.
Project Members
- Dr. Henrich C. Pöhls
- Arne Bilzhause
- Leon Sell
Contact
Project-related publications
2016 | |
 | , Henrich C. Pöhls Integrity and Authenticity Protection with Selective Disclosure Control in the Cloud and IoT In , editor, Proc. of Information and Communications Security (ICICS 2016) Volume 9977 of LNCS Publisher: Springer, 2016 Note: This is the full version. The original publication is available at springerlink.com |
2015 | |
| , Henrich C. Pöhls Securing the Internet of Things - Security and Privacy in a Hyperconnected World In and , editor, Building the Hyperconnected Society - IoT Research and Innovation Value Chains, Ecosystems and Markets Pages 189-219. Publisher: River Publishers, 2015 |
| , Henrich C. Pöhls A General Framework for Redactable Signatures and New Constructions Proc. of 18th Annual International Conference on Information Security and Cryptology (ICISC 2015) Volume 9558 of Lecture Notes in Computer Science (LNCS) , page 3-19. Publisher: Springer, 2015 |
 | , Henrich C. Pöhls The legal status of malleable- and functional signatures in light of Regulation (EU) No910/2014 Proc. of 3rd International Academic Conference of Young Scientists on Law & Psychology 2015 (LPS 2015) , page 404-410. Publisher: L'viv Polytechnic Publishing House, 2015 ISBN: 978-617-607-856-2 |
| , , , , , , , Henrich C. Pöhls Towards a New Paradigm for Privacy and Security in Cloud Services New LEIT projects on Security-by-Design - 4th Cyber Security and Privacy EU Forum, CSP Forum 2015, Brussels, Belgium, April 28 - 29 Publisher: Springer, 2015 |
| Henrich C. Pöhls Accountable Redactable Signatures Proc. of the 10th International Conference on Availability, Reliability and Security (ARES 2015) Publisher: IEEE, 2015 Note: The original publication is going to be available soon at ieeexplore.ieee.org. |
| , , , Henrich C. Pöhls Overview of Functional and Malleable Signature Schemes (PRISMACLOUD Deliverable D4.4) 2015 |
Share this page 