Skip to main content
European Commission logo
Deutsch Deutsch
CORDIS - Forschungsergebnisse der EU
CORDIS
CORDIS Web 30th anniversary CORDIS Web 30th anniversary

Trust-aware, REliable and Distributed Information SEcurity in the Cloud.

Leistungen

Innovation management report

This document reviews the initial ISP and incorporates modifications if needed. The document reports on the alignment of the project architecture designs and developments to the current technological and market trends.

Final Evaluation report

This report summarizes the evaluation sessions and the results obtained with regards to the evaluation criteria defined in deliverable D6.3. The conclusions should indicate the TREDISEC framework maturity level (e.g. using NASA TRL levels).

Evaluation criteria

A report defining the evaluation criteria to be used in the evaluation sessions for measuring the results of the TREDISEC framework in the context of the use cases deployments.

A Proposal on Secure Enforcement of Policies in the Cloud

This deliverable will present a framework for secure enforcement of policies in the cloud. Our solutions encompass existing state of the art technique and include novel primitives, such as collusion resistant sharing of information and novel All or Nothing Transforms (AONTs) and ABAC-based policies with distributed attributes. The deliverable will also report on the design of secure deletion function in cloud storage nodes for emerging storage systems (e.g., Flash).

Dissemination plan

This deliverable describes the plan for the dissemination activities to be carried out during the entire project lifetime

A Proposal for Data Confidentiality and Deduplication

This deliverable will present, analyse, and implement a set of solutions for data confidentiality given a powerful adversary that can compromise the encryption keys. We will also devise solutions that ensure data confidentiality while enabling the cloud to perform data deduplication.

A Proposal for Access Control Models for Multi-tenancy

This deliverable will assess current approaches for access control and propose novel models, based on current progress in ABAC models, to cope with multi-tenancy requirements and in particular with distributed attributes. A mapping between these ABAC-based models to enforceable policy languages (e.g. XACML) will be proposed, including the design of an enforcement component to parse, interpret and execute access control policies.

Specification and Preliminary Design of Verifiability mechanisms

This report will introduce initial design of different verifiability primitives.

Project Quality Assurance Plan

This deliverable will provide guidance to the project partners for common terminology, structure and processes and will help establishing and maintaining an efficient project management.

Requirements and trade-off between verifiability and data reduction

This deliverable will identify the specific requirements of TREDISEC use cases and analyze the compatibility of existing verifiability solutions with data reduction techniques.

Exploitation report and long term sustainability strategy

This deliverable explains in detail the TREDISEC exploitation strategy, the individual partners exploitation plans for the results of the project and defines a sustainability path for the continuity of the TREDISEC achievements after the project ends.

Innovation Strategy and Plan

This document establishes the strategy, processes, milestones and role assignments to ensure an innovation-driven research and that development work is performed during the entire project duration. The ISP includes an early market and technologies assessment to serve as input to the work packages action plan.

Requirements analysis and consolidation

A list of consolidated and traceable functional and non-functional requirements.

Optimization of outsourcing activities and initial design of privacy preserving data processing primitives

This deliverable will provide a tool set to optimize the actual outsourcing process, by for example, parallelizing encryption before outsourcing data to the cloud. In this context, we introduce an initial design of privacy preserving primitives for data processing. This deliverable will also comprise the complete design and evaluation of privacy preserving data processing primitives.

Final Innovation management report

This document reports on the alignment of the project achievements to the current technological and market trends. The document includes an assessment of the maturity of the project results after the deployment and evaluation in the use case scenarios.

Complete Design and Evaluation of Verifiability mechanisms

This deliverable will provide a complete description of different verifiability solutions which integrate data reduction schemes. Such techniques will also be evaluated in terms of security and performance.

Communication strategy and plan

The project communication activities, actions, channels, procedures and supporting marketing and promotional material will be defined in this deliverable.

Design of Provisioning Framework

This deliverable will provide the design of the provisioning framework. It will comprise support for evaluating historical queries as well as automated analysis of database metadata such as table structures and data types. There will be support for labelling columns with respect to security, privacy, functionality and cloud processing requirements as well as support for automated optimization.

A Proposal for Resource Isolation in Multi-Tenant Storage Systems

This deliverable consists of the design and implementation of multi-tenant isolation techniques for cloud systems that can be used in combination with existing application-level methods and leverage (i) OS-and system-based isolation primitives, to enable a second set of security controls, and/or (ii) existing dedicated security hardware (e.g., Trusted Platform Modules, Hardware Security Modules) and existing or new Trusted Execution Environments (TEEs) that are built upon the latter

Implementation of Provisioning, Outsourcing and Processing Frameworks

This deliverable will provide the implementation of the provisioning framework, as well as a complete description and implementation of privacy preserving data processing primitives. We will show how earlier observations made when outsourcing data into the cloud will influence the privacy-aware processing.

TREDISEC architecture and initial framework design

This deliverable evaluates the architectural models and selects the appropriate one for the project. This deliverable also provides a first design of the TREDISEC framework.

Final architecture and design of the TREDISEC framework

This deliverable describes the final design of the TREDISEC framework.

TREDISEC framework implementation

This deliverable is a set of software elements packaged, implementing the TREDISEC framework, and the supporting generic test cloud environment.

TREDISEC public website

This deliverable consists of the TREDISEC website.

Veröffentlichungen

On Information Leakage in Deduplicated Storage Systems

Autoren: Hubert Ritzdorf, Ghassan Karame, Claudio Soriente, Srdjan Čapkun
Veröffentlicht in: Proceedings of the 2016 ACM on Cloud Computing Security Workshop - CCSW '16, 2016, Seite(n) 61-72, ISBN 9781-450345729
Herausgeber: ACM Press
DOI: 10.1145/2996429.2996432

Message-Locked Proofs of Retrievability with Secure Deduplication

Autoren: Dimitrios Vasilopoulos, Melek Önen, Kaoutar Elkhiyaoui, Refik Molva
Veröffentlicht in: Proceedings of the 2016 ACM on Cloud Computing Security Workshop - CCSW '16, 2016, Seite(n) 73-83, ISBN 9781-450345729
Herausgeber: ACM Press
DOI: 10.1145/2996429.2996433

Authenticated Encryption with Variable Stretch

Autoren: Reza Reyhanitabar, Serge Vaudenay, Damian Vizár
Veröffentlicht in: SIACRYPT 2016: Advances in Cryptology – ASIACRYPT 2016, 2016, Seite(n) 396-425
Herausgeber: Springer Berlin Heidelberg
DOI: 10.1007/978-3-662-53887-6_15

Encrypting Analytical Web Applications

Autoren: Benny Fuhry, Walter Tighzert, Florian Kerschbaum
Veröffentlicht in: Proceedings of the 2016 ACM on Cloud Computing Security Workshop - CCSW '16, 2016, Seite(n) 35-46, ISBN 9781-450345729
Herausgeber: ACM Press
DOI: 10.1145/2996429.2996438

Poly-Logarithmic Range Queries on Encrypted Data with Small Leakage

Autoren: Florian Hahn, Florian Kerschbaum
Veröffentlicht in: Proceedings of the 2016 ACM on Cloud Computing Security Workshop - CCSW '16, 2016, Seite(n) 23-34, ISBN 9781-450345729
Herausgeber: ACM Press
DOI: 10.1145/2996429.2996437

HardIDX: Practical and Secure Index with SGX

Autoren: Benny Fuhry, Raad Bahmani, Ferdinand Brasser, Florian Hahn, Florian Kerschbaum, Ahmad-Reza Sadeghi
Veröffentlicht in: DBSec 2017: Data and Applications Security and Privacy XXXI, 2017, Seite(n) 386-408, ISBN 978-3-319-61176-1
Herausgeber: Springer International Publishing
DOI: 10.1007/978-3-319-61176-1_22

Sharing Proofs of Retrievability across Tenants

Autoren: Frederik Armknecht, Jens-Matthias Bohli, David Froelicher, Ghassan Karame
Veröffentlicht in: Proceedings of the 2017 ACM on Asia Conference on Computer and Communications Security - ASIA CCS '17, 2017, Seite(n) 275-287, ISBN 9781-450349444
Herausgeber: ACM Press
DOI: 10.1145/3052973.3052997

Reconciling Security and Functional Requirements in Multi-tenant Clouds

Autoren: Ghassan Karame, Matthias Neugschwandtner, Melek Önen, Hubert Ritzdorf
Veröffentlicht in: Proceedings of the Fifth ACM International Workshop on Security in Cloud Computing - SCC '17, 2017, Seite(n) 11-18, ISBN 9781-450349703
Herausgeber: ACM Press
DOI: 10.1145/3055259.3055265

AURA: Recovering from Transient Failures in Cloud Deployments

Autoren: Ioannis Giannakopoulos, Ioannis Konstantinou, Dimitrios Tsoumakos, Nectarios Koziris
Veröffentlicht in: 2017 17th IEEE/ACM International Symposium on Cluster, Cloud and Grid Computing (CCGRID), 2017, Seite(n) 762-765, ISBN 978-1-5090-6611-7
Herausgeber: IEEE
DOI: 10.1109/CCGRID.2017.133

Verifiable Document Redacting

Autoren: Hervé Chabanne, Rodolphe Hugel, Julien Keuffer
Veröffentlicht in: 2017, Seite(n) 334-351
Herausgeber: Springer International Publishing
DOI: 10.1007/978-3-319-66402-6_20

Dynamic Provable Data Possession Protocols with Public Verifiability and Data Privacy

Autoren: Clémentine Gritti, Rongmao Chen, Willy Susilo, Thomas Plantard
Veröffentlicht in: 2017, Seite(n) 485-505
Herausgeber: Springer International Publishing
DOI: 10.1007/978-3-319-72359-4_29

ROTE: Rollback Protection for Trusted Execution

Autoren: Sinisa Matetic, Mansoor Ahmed, Kari Kostiainen, Aritra Dhar, David Sommer, Arthur Gervais, Ari Juels, Srdjan Capkun
Veröffentlicht in: USENIX Security Symposium 2017 proceedings, 2017, ISBN 978-1-931971-40-9
Herausgeber: USENIX

Practical and Secure Substring Search

Autoren: F. hahn, N. Loza, F. Kerschbaum
Veröffentlicht in: SIGMOD/PODS ’18: 2018 International Conference on Management of Data, 2018, ISBN 978-1-4503-4703-7
Herausgeber: SIGMOD
DOI: 10.1145/3183713.3183754

Secure and Scalable Multi-User Searchable Encryption

Autoren: C. Van Rompay, R. Molva, M. Önen
Veröffentlicht in: International Workshop on Security in Cloud Computing, 2018, ISBN 978-1-4503-5759-3
Herausgeber: International Workshop on Security in Cloud Computing
DOI: 10.1145/3201595.3201597

POROS: Proof of Data Reliability for Outsourced Storage

Autoren: D. Vasilopoulos, K. Elkhiyaoui, R. Molva, M. Önen
Veröffentlicht in: International Workshop on Security in Cloud Computing, 2018, ISBN 978-1-4503-5759-3
Herausgeber: International Workshop on Security in Cloud Computing
DOI: 10.1145/3201595.3201600

Study of a Verifiable Biometric Matching

Autoren: Hervé Chabanne, Julien Keuffer, Roch Lescuyer
Veröffentlicht in: Proceedings of the 4th ACM Workshop on Information Hiding and Multimedia Security - IH&MMSec '16, 2016, Seite(n) 183-184, ISBN 9781-450342902
Herausgeber: ACM Press
DOI: 10.1145/2909827.2931097

Mirror: Enabling Proofs of Data Replication and Retrievability in the Cloud

Autoren: Frederik Armknecht, Ludovic Barman, Jens-Matthias Bohli, Ghassan Karame
Veröffentlicht in: 2016, ISBN 978-1-931971-32-4
Herausgeber: USENIX Association

Efficient Techniques for Publicly Verifiable Delegation of Computation

Autoren: Kaoutar Elkhiyaoui, Melek Önen, Monir Azraoui, Refik Molva
Veröffentlicht in: Proceedings of the 11th ACM on Asia Conference on Computer and Communications Security - ASIA CCS '16, 2016, Seite(n) 119-128, ISBN 9781-450342339
Herausgeber: ACM Press
DOI: 10.1145/2897845.2897910

A transparent defense against USB eavesdropping attacks

Autoren: Matthias Neugschwandtner, Anton Beitler, Anil Kurmus
Veröffentlicht in: Proceedings of the 9th European Workshop on System Security - EuroSec '16, 2016, Seite(n) 1-6, ISBN 9781-450342957
Herausgeber: ACM Press
DOI: 10.1145/2905760.2905765

Logical Partitions on Many-Core Platforms

Autoren: Ramya Jayaram Masti, Claudio Marforio, Kari Kostiainen, Claudio Soriente, Srdjan Capkun
Veröffentlicht in: Proceedings of the 31st Annual Computer Security Applications Conference on - ACSAC 2015, 2015, Seite(n) 451-460, ISBN 9781-450336826
Herausgeber: ACM Press
DOI: 10.1145/2818000.2818026

Transparent Data Deduplication in the Cloud

Autoren: Frederik Armknecht, Jens-Matthias Bohli, Ghassan O. Karame, Franck Youssef
Veröffentlicht in: Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security - CCS '15, 2015, Seite(n) 886-900, ISBN 9781-450338325
Herausgeber: ACM Press
DOI: 10.1145/2810103.2813630

Initial Encryption of large Searchable Data Sets using Hadoop

Autoren: Feng Wang, Mathias Kohler, Andreas Schaad
Veröffentlicht in: Proceedings of the 20th ACM Symposium on Access Control Models and Technologies - SACMAT '15, 2015, Seite(n) 165-168, ISBN 9781-450335560
Herausgeber: ACM Press
DOI: 10.1145/2752952.2752960

A verifiable system for automated face identification

Autoren: Hervé Chabanne, Julien Keuffer, Roch Lescuyer
Veröffentlicht in: 2016
Herausgeber: --

Some applications of verifiable computation to biometric verification

Autoren: Julien Bringer, Herve Chabanne, Firas Kraiem, Roch Lescuyer, Eduardo Soria-Vazquez
Veröffentlicht in: 2015 IEEE International Workshop on Information Forensics and Security (WIFS), 2015, Seite(n) 1-6, ISBN 978-1-4673-6802-5
Herausgeber: IEEE
DOI: 10.1109/WIFS.2015.7368568

Securing Cloud Data under Key Exposure

Autoren: Ghassan O. Karame, Claudio Soriente, Krzysztof Lichota, Srdjan Capkun
Veröffentlicht in: IEEE Transactions on Cloud Computing, 2017, Seite(n) 1-1, ISSN 2168-7161
Herausgeber: Institute of Electrical and Electronics Engineers Inc.
DOI: 10.1109/TCC.2017.2670559

A Leakage-Abuse Attack Against Multi-User Searchable Encryption

Autoren: Cédric Van Rompay, Refik Molva, Melek Önen
Veröffentlicht in: Proceedings on Privacy Enhancing Technologies, Ausgabe 2017/3, 2017, ISSN 2299-0984
Herausgeber: DE GRUYTER OPEN
DOI: 10.1515/popets-2017-0034

Towards Shared Ownership in the Cloud

Autoren: Hubert Ritzdorf, Claudio Soriente, Ghassan O. Karame, Srdjan Marinovic, Damian Gruber, Srdjan Capkun
Veröffentlicht in: IEEE Transactions on Information Forensics and Security, 2018, Seite(n) 1-1, ISSN 1556-6013
Herausgeber: Institute of Electrical and Electronics Engineers
DOI: 10.1109/TIFS.2018.2837648

Towards Realizing a Truly Secure and Trustworthy Cloud

Autoren: Beatriz Gallego-Nicasio Crespo, Melek Önen, Ghassan Karame
Veröffentlicht in: ERCIM News, 2016, ISSN 0926-4981
Herausgeber: ERCIM

Deniable Functional Encryption

Autoren: Angelo De Caro, Vincenzo Iovino, Adam O’Neill
Veröffentlicht in: Public-Key Cryptography – PKC 2016, 2016, Seite(n) 196-222, ISBN 978-3-662-49384-7
Herausgeber: Springer Berlin Heidelberg
DOI: 10.1007/978-3-662-49384-7_8

AsyncShock: Exploiting Synchronisation Bugs in Intel SGX Enclaves

Autoren: Nico Weichbrodt, Anil Kurmus, Peter Pietzuch, Rüdiger Kapitza
Veröffentlicht in: Computer Security – ESORICS 2016, 2016, Seite(n) 440-457, ISBN 978-3-319-45744-4
Herausgeber: Springer International Publishing
DOI: 10.1007/978-3-319-45744-4_22

Searchable Encryption for Biometric Identification Revisited

Autoren: Ghassane Amchyaa, Julien Bringer, Roch Lescuyer
Veröffentlicht in: Data Privacy Management and Security Assurance, 2016, Seite(n) 113-129, ISBN 978-3-319-47072-6
Herausgeber: Springer International Publishing
DOI: 10.1007/978-3-319-47072-6_8

PerfectDedup: Secure Data Deduplication

Autoren: Pasquale Puzio, Refik Molva, Melek Önen, Sergio Loureiro
Veröffentlicht in: Data Privacy Management, and Security Assurance, 2016, Seite(n) 150-166, ISBN 978-3-319-29883-2
Herausgeber: Springer International Publishing
DOI: 10.1007/978-3-319-29883-2_10

Delegating Biometric Authentication with the Sumcheck Protocol

Autoren: Hervé Chabanne, Julien Keuffer, Roch Lescuyer
Veröffentlicht in: Information Security Theory and Practice, 2016, Seite(n) 236-244, ISBN 978-3-319-45931-8
Herausgeber: Springer International Publishing
DOI: 10.1007/978-3-319-45931-8_15

TREDISEC: Trust-Aware REliable and Distributed Information SEcurity in the Cloud

Autoren: Julien Bringer, Beatriz Gallego, Ghassan Karame, Mathias Kohler, Panos Louridas, Melek Önen, Hubert Ritzdorf, Alessandro Sorniotti, David Vallejo
Veröffentlicht in: E-Democracy – Citizen Rights in the World of the New Computing Paradigms, 2015, Seite(n) 193-197, ISBN 978-3-319-27164-4
Herausgeber: Springer International Publishing
DOI: 10.1007/978-3-319-27164-4_14

Suche nach OpenAIRE-Daten ...

Bei der Suche nach OpenAIRE-Daten ist ein Fehler aufgetreten

Es liegen keine Ergebnisse vor