Home |  DEUTSCH |  Contact |  Imprint |  Login |  KIT

PaaSword/en

Aus Aifbportal

Wechseln zu: Navigation, Suche

A Holistic Data Privacy and Security by Design Platform-as-a-Service Framework Introducing Distributed Encrypted Persistence in Cloud-based Applications


Contact: Gunther Schiefer

http://paasword.eu


Project Status: active


Description

The vision of PaaSword is to maximize and fortify the trust of individual, professional and corporate customers to Cloud-enabled services and applications, to safeguard both corporate and personal sensitive data stored on Cloud infrastructures and Cloud-based storage services, and to accelerate the adoption of Cloud computing technologies and paradigm shift from the European industry. Thus, PaaSword will introduce a holistic data privacy and security by design framework enhanced by sophisticated context-aware policy access models and robust policy access, decision, enforcement and governance mechanisms, which will enable the implementation of secure and transparent Cloudbased applications and services that will maintain a fully distributed and totally encrypted data persistence layer, and, thus, will foster customers' data protection, integrity and confidentiality, even in the case wherein there is no control over the underlying third-party Cloud resources utilized.In particular, PaaSword intends not only to adopt the CSA Cloud security principles, but also to extend them by capitalizing on recent innovations on (a) distributed encryption and virtual database middleware technologies that introduce a scalable secure Cloud database abstraction layer combined with sophisticated distribution and encryption methods into the processing and querying of data stored in the Cloud; (b) context-aware access control that incorporate the dynamically changing contextual information into novel group policies implementing configurable context-based access control policies and context-dependent access rights to the stored data at various different levels; and (c) policy governance, modelling and annotation techniques that allows application developers to specify an appropriate level of protection for the application’s data, while the evaluation of whether an incoming request should be granted access to the target data takes dynamically place during application runtime.


Involved Persons
Andreas Oberweis, Gunther Schiefer, Andreas Schoknecht, Murat Citak


Information

from: 1 Januar 2015
until: 31 Dezember 2017
Funding: EU


Partners

CAS Software AGSICS - Swedish ICT ABICCS - Institute of Communications and Computer SystemsIntrasoft International SASEERC - South East European Research CenterSixSqUBITECHSiemens SRLSingularLogic Cyprus Ltd


Research Group

Business Information Systems


Area of Research

Cloud Computing, Security, Database Systems


Publications Belonging to the Project
 - book
 - incollection
 - booklet
 - proceedings
 - phdthesis
 - techreport
 - deliverable
 - manual
 - misc
 - unpublished





article
Andreas Schoknecht, Gunther Schiefer, Murat Citak, Andreas Oberweis
Security-by-Design in der Cloud-Anwendungsentwicklung
HMD Praxis der Wirtschaftsinformatik, 53, (5), pages 688-697, Oktober, 2016
(Details)

Yiannis Verginadis, Antonis Michalas, Panagiotis Gouvas, Gunther Schiefer, Gerald Hübsch, Iraklis Paraskakis
PaaSword: A Holistic Data Privacy and Security by Design Framework for Cloud Services
Journal of Grid Computing, März, 2017
(Details)

↑ top

inproceedings
Rafael Dowsley, Matthias Gabel, Gerald Hübsch, Gunther Schiefer, Antonia Schwichtenberg
A Distributed Key Management Approach
In IEEE, Proc. of the 2nd International Workshop on Cloud Security and Data Privacy by Design (CloudSPD'16), co-located with the 8th IEEE International Conference on Cloud Computing Technology and Science (CloudCom 2016), IEEE, Luxembourg, Dezember, 2016
(Details)

Yiannis Verginadis, Antonis Michalas, Panagiotis Gouvas, Gunther Schiefer, Gerald Hübsch, Iraklis Paraskakis
PaaSword: A Holistic Data Privacy and Security by Design Framework for Cloud Services
5th International Conference on Cloud Computing and Services Science, CLOSER 2015, Springer, Lisbon, Portugal, Mai, 2015
(Details)

↑ top


-->