Secure Data Sharing and Processing in Heterogeneous Clouds

Bojan Suzic, Andreas Reiter, Florian Reimair, Daniele Venturi, Baldur Kubo

Publikation: Beitrag in Buch/Bericht/KonferenzbandBeitrag in einem KonferenzbandForschungBegutachtung

Abstract

The extensive cloud adoption among the European Public Sector Players empowered them to own and operate a range of cloud infrastructures. These deployments vary both in the size and capabilities, as well as in the range of employed technologies and processes. The public sector, however, lacks the necessary technology to enable effective, interoperable and secure integration of a multitude of its computing clouds and services. In this work we focus on the federation of private clouds and the approaches that enable secure data sharing and processing among the collaborating infrastructures and services of public entities. We investigate the aspects of access control, data and security policy languages, as well as cryptographic approaches that enable fine-grained security and data processing in semi-trusted environments. We identify the main challenges and frame the future work that serve as an enabler of interoperability among heterogeneous infrastructures and services. Our goal is to enable both security and legal conformance as well as to facilitate transparency, privacy and effectivity of private cloud federations for the public sector needs.
Originalspracheenglisch
TitelProcedia Computer Science
Untertitel1st International Conference on Cloud Forward: From Distributed to Complete Computing Secure Data Sharing and Processing in Heterogeneous Clouds
Herausgeber (Verlag)Elsevier B.V.
Band68
ISBN (elektronisch)1877-0509
ISBN (Print)1877-0509
DOIs
PublikationsstatusVeröffentlicht - 2015
VeranstaltungCloud Forward Conference - Pisa, Italien
Dauer: 6 Okt 20158 Okt 2015

Konferenz

KonferenzCloud Forward Conference
LandItalien
OrtPisa
Zeitraum6/10/158/10/15

Fingerprint

Cloud computing
Processing
Access control
Interoperability
Transparency

Schlagwörter

    ASJC Scopus subject areas

    • !!Computer Networks and Communications
    • Information systems
    • !!Computer Science (miscellaneous)

    Fields of Expertise

    • Information, Communication & Computing

    Dies zitieren

    Suzic, B., Reiter, A., Reimair, F., Venturi, D., & Kubo, B. (2015). Secure Data Sharing and Processing in Heterogeneous Clouds. in Procedia Computer Science: 1st International Conference on Cloud Forward: From Distributed to Complete Computing Secure Data Sharing and Processing in Heterogeneous Clouds (Band 68). Elsevier B.V.. https://doi.org/dx.doi.org/10.1016/j.procs.2015.09.228

    Secure Data Sharing and Processing in Heterogeneous Clouds. / Suzic, Bojan; Reiter, Andreas; Reimair, Florian; Venturi, Daniele; Kubo, Baldur.

    Procedia Computer Science: 1st International Conference on Cloud Forward: From Distributed to Complete Computing Secure Data Sharing and Processing in Heterogeneous Clouds. Band 68 Elsevier B.V., 2015.

    Publikation: Beitrag in Buch/Bericht/KonferenzbandBeitrag in einem KonferenzbandForschungBegutachtung

    Suzic, B, Reiter, A, Reimair, F, Venturi, D & Kubo, B 2015, Secure Data Sharing and Processing in Heterogeneous Clouds. in Procedia Computer Science: 1st International Conference on Cloud Forward: From Distributed to Complete Computing Secure Data Sharing and Processing in Heterogeneous Clouds. Bd. 68, Elsevier B.V., Pisa, Italien, 6/10/15. https://doi.org/dx.doi.org/10.1016/j.procs.2015.09.228
    Suzic B, Reiter A, Reimair F, Venturi D, Kubo B. Secure Data Sharing and Processing in Heterogeneous Clouds. in Procedia Computer Science: 1st International Conference on Cloud Forward: From Distributed to Complete Computing Secure Data Sharing and Processing in Heterogeneous Clouds. Band 68. Elsevier B.V. 2015 https://doi.org/dx.doi.org/10.1016/j.procs.2015.09.228
    Suzic, Bojan ; Reiter, Andreas ; Reimair, Florian ; Venturi, Daniele ; Kubo, Baldur. / Secure Data Sharing and Processing in Heterogeneous Clouds. Procedia Computer Science: 1st International Conference on Cloud Forward: From Distributed to Complete Computing Secure Data Sharing and Processing in Heterogeneous Clouds. Band 68 Elsevier B.V., 2015.
    @inproceedings{b69e25a3a97745dca532e13fe96d04ea,
    title = "Secure Data Sharing and Processing in Heterogeneous Clouds",
    abstract = "The extensive cloud adoption among the European Public Sector Players empowered them to own and operate a range of cloud infrastructures. These deployments vary both in the size and capabilities, as well as in the range of employed technologies and processes. The public sector, however, lacks the necessary technology to enable effective, interoperable and secure integration of a multitude of its computing clouds and services. In this work we focus on the federation of private clouds and the approaches that enable secure data sharing and processing among the collaborating infrastructures and services of public entities. We investigate the aspects of access control, data and security policy languages, as well as cryptographic approaches that enable fine-grained security and data processing in semi-trusted environments. We identify the main challenges and frame the future work that serve as an enabler of interoperability among heterogeneous infrastructures and services. Our goal is to enable both security and legal conformance as well as to facilitate transparency, privacy and effectivity of private cloud federations for the public sector needs.",
    keywords = "federated clouds, inter-cloud, authorization federation, security policy, access control, proxy re-encryption, attribute-based encryption, multi-cloud, cloud federation, cloud security, encryption, data masking, format-preserving encryption, xacml, oauth",
    author = "Bojan Suzic and Andreas Reiter and Florian Reimair and Daniele Venturi and Baldur Kubo",
    note = "This work has been supported partially by the SUNFISH project (N.644666) funded by the European Commission H2020 Program.",
    year = "2015",
    doi = "dx.doi.org/10.1016/j.procs.2015.09.228",
    language = "English",
    isbn = "1877-0509",
    volume = "68",
    booktitle = "Procedia Computer Science",
    publisher = "Elsevier B.V.",
    address = "Netherlands",

    }

    TY - GEN

    T1 - Secure Data Sharing and Processing in Heterogeneous Clouds

    AU - Suzic, Bojan

    AU - Reiter, Andreas

    AU - Reimair, Florian

    AU - Venturi, Daniele

    AU - Kubo, Baldur

    N1 - This work has been supported partially by the SUNFISH project (N.644666) funded by the European Commission H2020 Program.

    PY - 2015

    Y1 - 2015

    N2 - The extensive cloud adoption among the European Public Sector Players empowered them to own and operate a range of cloud infrastructures. These deployments vary both in the size and capabilities, as well as in the range of employed technologies and processes. The public sector, however, lacks the necessary technology to enable effective, interoperable and secure integration of a multitude of its computing clouds and services. In this work we focus on the federation of private clouds and the approaches that enable secure data sharing and processing among the collaborating infrastructures and services of public entities. We investigate the aspects of access control, data and security policy languages, as well as cryptographic approaches that enable fine-grained security and data processing in semi-trusted environments. We identify the main challenges and frame the future work that serve as an enabler of interoperability among heterogeneous infrastructures and services. Our goal is to enable both security and legal conformance as well as to facilitate transparency, privacy and effectivity of private cloud federations for the public sector needs.

    AB - The extensive cloud adoption among the European Public Sector Players empowered them to own and operate a range of cloud infrastructures. These deployments vary both in the size and capabilities, as well as in the range of employed technologies and processes. The public sector, however, lacks the necessary technology to enable effective, interoperable and secure integration of a multitude of its computing clouds and services. In this work we focus on the federation of private clouds and the approaches that enable secure data sharing and processing among the collaborating infrastructures and services of public entities. We investigate the aspects of access control, data and security policy languages, as well as cryptographic approaches that enable fine-grained security and data processing in semi-trusted environments. We identify the main challenges and frame the future work that serve as an enabler of interoperability among heterogeneous infrastructures and services. Our goal is to enable both security and legal conformance as well as to facilitate transparency, privacy and effectivity of private cloud federations for the public sector needs.

    KW - federated clouds

    KW - inter-cloud

    KW - authorization federation

    KW - security policy

    KW - access control

    KW - proxy re-encryption

    KW - attribute-based encryption

    KW - multi-cloud

    KW - cloud federation

    KW - cloud security

    KW - encryption

    KW - data masking

    KW - format-preserving encryption

    KW - xacml

    KW - oauth

    U2 - dx.doi.org/10.1016/j.procs.2015.09.228

    DO - dx.doi.org/10.1016/j.procs.2015.09.228

    M3 - Conference contribution

    SN - 1877-0509

    VL - 68

    BT - Procedia Computer Science

    PB - Elsevier B.V.

    ER -