After three years the MUSA project has successfully achieved all the technical objectives and expected outreach activities impact. The main results of the project can be summarised as:
• MUSA has advanced in state-of-the-art of multi-cloud security by means of the MUSA Framework, which is the first open source Security DevOps solution for applications which combine the use of multiple heterogeneous cloud providers. All tools are available in www.musa-project.eu.
• MUSA framework offers a kanban-style Dashboard that seamlessly integrates all the tools in the framework and offers multi-disciplinary approach to DevOps process for multi-cloud applications considering application security in all the workflow.
• MUSA has delivered an extended CAMEL language and a web-based MUSA Modeller for modelling multi-cloud applications with richer deployment and security requirements.
• MUSA has advanced in state-of-the-art of security Service Level Agreement (SLA) modelling, SLA composition and automation of SLA generation developing a complete SLA-based Security-by-Design Engineering Process and supporting tools.
• The MUSA offers a very innovative Risk Management and Decision Support Tool for risk-based identification of required security controls and selection of cloud services that best match those controls.
• MUSA has advanced in cloud-based application assurance by offering a continuous monitoring solution able to correlate distributed multi-source events captured at the system, application and network levels to detect security issues and facilitate the root cause analysis of potential SLAs violations.
The MUSA Framework was successfully validated in two case studies: Flight scheduling prototype application by Lufthansa Systems and Smart cities application by Tampere University of Technology.
Since April 2015, the MUSA project has coordinated the Data Protection, Security and Privacy in Cloud cluster of EU-funded research projects working on these aspects of Cloud computing. As part of this work, the MUSA coordinator was the main editor of three major deliverables of the Cluster, the Map of synergies between the clustered projects, the Whitepaper on Challenges for trustworthy (multi-)Cloud-based services in the Digital Single Market and the Whitepaper on Cloud technology options towards Free Flow of Data.
The DPSP Cluster has organised two joint workshops (February 2016, Naples and September 2017, Amsterdam) where MUSA, as one of the co-organising projects, was presented in technical discussions on research challenges of cloud security and privacy, as well as demonstrated to Cloud stakeholders., was presented and participated in a panel on future.
The Cluster has actively participated in Net Futures 2016 and 2017 with presentations at concertation meetings and a booth in the exhibition area in 2016 that was visited by Digital Economy & Society Commissioner Günther Oettinger.
The consortium has also analysed the market opportunities for MUSA framework components and devised the intended business models for them. Major exploitation activities were carried out in the project including: MUSA organised Workshop with Data Centre Alliance (DCA), Cloud Security Alliance (CSA) and Cloud Industry Forum (CIF) (March 2016, London), MUSA organised booth, presentations and a workshop at Cloud Security Expo 2017 (March 2017, London), participation at Cloud and DevOps World 2017, at CloudWATCH2 Cloud Summit 2017 (September 2017, Amsterdam) and at Cloud days’ 2017 (September 2017, Nancy, France).