Secure Data Sharing and Processing in Heterogeneous Clouds

Bojan Suzic; Andreas Reiter; Florian Reimair; Daniele Venturi; Baldur Kubo

doi:dx.doi.org/10.1016/j.procs.2015.09.228

Secure Data Sharing and Processing in Heterogeneous Clouds

Bojan Suzic, Andreas Reiter, Florian Reimair, Daniele Venturi, Baldur Kubo

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Abstract

The extensive cloud adoption among the European Public Sector Players empowered them to own and operate a range of cloud infrastructures. These deployments vary both in the size and capabilities, as well as in the range of employed technologies and processes. The public sector, however, lacks the necessary technology to enable effective, interoperable and secure integration of a multitude of its computing clouds and services. In this work we focus on the federation of private clouds and the approaches that enable secure data sharing and processing among the collaborating infrastructures and services of public entities. We investigate the aspects of access control, data and security policy languages, as well as cryptographic approaches that enable fine-grained security and data processing in semi-trusted environments. We identify the main challenges and frame the future work that serve as an enabler of interoperability among heterogeneous infrastructures and services. Our goal is to enable both security and legal conformance as well as to facilitate transparency, privacy and effectivity of private cloud federations for the public sector needs.

Original language	English
Title of host publication	Procedia Computer Science
Subtitle of host publication	1st International Conference on Cloud Forward: From Distributed to Complete Computing Secure Data Sharing and Processing in Heterogeneous Clouds
Publisher	Elsevier B.V.
Volume	68
ISBN (Electronic)	1877-0509
ISBN (Print)	1877-0509
DOIs	https://doi.org/dx.doi.org/10.1016/j.procs.2015.09.228
Publication status	Published - 2015
Event	Cloud Forward Conference - Pisa, Italy Duration: 6 Oct 2015 → 8 Oct 2015

Conference

Conference	Cloud Forward Conference
Country/Territory	Italy
City	Pisa
Period	6/10/15 → 8/10/15

Keywords

federated clouds
inter-cloud
authorization federation
security policy
access control
proxy re-encryption
attribute-based encryption
multi-cloud
cloud federation
cloud security
encryption
data masking
format-preserving encryption
xacml
oauth

ASJC Scopus subject areas

Computer Networks and Communications
Information Systems
Computer Science (miscellaneous)

Fields of Expertise

Information, Communication & Computing

Access to Document

dx.doi.org/10.1016/j.procs.2015.09.228

Secure Data Sharing and Processing in Heterogeneous CloudsFinal published version, 387 KBLicence: CC BY-NC-ND 4.0

http://www.sciencedirect.com/science/article/pii/S1877050915030732Licence: CC BY-NC-ND 4.0

Cite this

Suzic, B., Reiter, A., Reimair, F., Venturi, D., & Kubo, B. (2015). Secure Data Sharing and Processing in Heterogeneous Clouds. In Procedia Computer Science: 1st International Conference on Cloud Forward: From Distributed to Complete Computing Secure Data Sharing and Processing in Heterogeneous Clouds (Vol. 68). Elsevier B.V.. https://doi.org/dx.doi.org/10.1016/j.procs.2015.09.228

Secure Data Sharing and Processing in Heterogeneous Clouds. / Suzic, Bojan; Reiter, Andreas; Reimair, Florian et al.
Procedia Computer Science: 1st International Conference on Cloud Forward: From Distributed to Complete Computing Secure Data Sharing and Processing in Heterogeneous Clouds. Vol. 68 Elsevier B.V., 2015.

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Suzic, B, Reiter, A, Reimair, F, Venturi, D & Kubo, B 2015, Secure Data Sharing and Processing in Heterogeneous Clouds. in Procedia Computer Science: 1st International Conference on Cloud Forward: From Distributed to Complete Computing Secure Data Sharing and Processing in Heterogeneous Clouds. vol. 68, Elsevier B.V., Cloud Forward Conference, Pisa, Italy, 6/10/15. https://doi.org/dx.doi.org/10.1016/j.procs.2015.09.228

@inproceedings{b69e25a3a97745dca532e13fe96d04ea,

title = "Secure Data Sharing and Processing in Heterogeneous Clouds",

abstract = "The extensive cloud adoption among the European Public Sector Players empowered them to own and operate a range of cloud infrastructures. These deployments vary both in the size and capabilities, as well as in the range of employed technologies and processes. The public sector, however, lacks the necessary technology to enable effective, interoperable and secure integration of a multitude of its computing clouds and services. In this work we focus on the federation of private clouds and the approaches that enable secure data sharing and processing among the collaborating infrastructures and services of public entities. We investigate the aspects of access control, data and security policy languages, as well as cryptographic approaches that enable fine-grained security and data processing in semi-trusted environments. We identify the main challenges and frame the future work that serve as an enabler of interoperability among heterogeneous infrastructures and services. Our goal is to enable both security and legal conformance as well as to facilitate transparency, privacy and effectivity of private cloud federations for the public sector needs.",

keywords = "federated clouds, inter-cloud, authorization federation, security policy, access control, proxy re-encryption, attribute-based encryption, multi-cloud, cloud federation, cloud security, encryption, data masking, format-preserving encryption, xacml, oauth",

author = "Bojan Suzic and Andreas Reiter and Florian Reimair and Daniele Venturi and Baldur Kubo",

note = "This work has been supported partially by the SUNFISH project (N.644666) funded by the European Commission H2020 Program.; Cloud Forward Conference ; Conference date: 06-10-2015 Through 08-10-2015",

year = "2015",

doi = "dx.doi.org/10.1016/j.procs.2015.09.228",

language = "English",

isbn = "1877-0509",

volume = "68",

booktitle = "Procedia Computer Science",

publisher = "Elsevier B.V.",

address = "Netherlands",

}

TY - GEN

T1 - Secure Data Sharing and Processing in Heterogeneous Clouds

AU - Suzic, Bojan

AU - Reiter, Andreas

AU - Reimair, Florian

AU - Venturi, Daniele

AU - Kubo, Baldur

N1 - This work has been supported partially by the SUNFISH project (N.644666) funded by the European Commission H2020 Program.

PY - 2015

Y1 - 2015

N2 - The extensive cloud adoption among the European Public Sector Players empowered them to own and operate a range of cloud infrastructures. These deployments vary both in the size and capabilities, as well as in the range of employed technologies and processes. The public sector, however, lacks the necessary technology to enable effective, interoperable and secure integration of a multitude of its computing clouds and services. In this work we focus on the federation of private clouds and the approaches that enable secure data sharing and processing among the collaborating infrastructures and services of public entities. We investigate the aspects of access control, data and security policy languages, as well as cryptographic approaches that enable fine-grained security and data processing in semi-trusted environments. We identify the main challenges and frame the future work that serve as an enabler of interoperability among heterogeneous infrastructures and services. Our goal is to enable both security and legal conformance as well as to facilitate transparency, privacy and effectivity of private cloud federations for the public sector needs.

AB - The extensive cloud adoption among the European Public Sector Players empowered them to own and operate a range of cloud infrastructures. These deployments vary both in the size and capabilities, as well as in the range of employed technologies and processes. The public sector, however, lacks the necessary technology to enable effective, interoperable and secure integration of a multitude of its computing clouds and services. In this work we focus on the federation of private clouds and the approaches that enable secure data sharing and processing among the collaborating infrastructures and services of public entities. We investigate the aspects of access control, data and security policy languages, as well as cryptographic approaches that enable fine-grained security and data processing in semi-trusted environments. We identify the main challenges and frame the future work that serve as an enabler of interoperability among heterogeneous infrastructures and services. Our goal is to enable both security and legal conformance as well as to facilitate transparency, privacy and effectivity of private cloud federations for the public sector needs.

KW - federated clouds

KW - inter-cloud

KW - authorization federation

KW - security policy

KW - access control

KW - proxy re-encryption

KW - attribute-based encryption

KW - multi-cloud

KW - cloud federation

KW - cloud security

KW - encryption

KW - data masking

KW - format-preserving encryption

KW - xacml

KW - oauth

U2 - dx.doi.org/10.1016/j.procs.2015.09.228

DO - dx.doi.org/10.1016/j.procs.2015.09.228

M3 - Conference paper

SN - 1877-0509

VL - 68

BT - Procedia Computer Science

PB - Elsevier B.V.

T2 - Cloud Forward Conference

Y2 - 6 October 2015 through 8 October 2015

ER -

Secure Data Sharing and Processing in Heterogeneous Clouds

Abstract

Conference

Keywords

ASJC Scopus subject areas

Fields of Expertise

Access to Document

Fingerprint

Cite this