Cloud infrastructures, despite all their advantages and importance to the competitiveness of modern economies, raise fundamental questions related to the privacy, integrity, and security of offsite data storage and processing tasks. These questions are currently not answered satisfactorily by existing technologies. Furthermore, recent developments in the wake of the expansive and sometimes unauthorized government access to private and sensitive data raise major privacy and security concerns about data located in the cloud, especially when data is physically located, processed, or must transit outside the legal jurisdiction of its rightful owner. This is exacerbated by providers of cloud services that frequently move and process data without notice in ways that are detrimental to the users and their privacy.
Typical cloud end-users, either individuals or small companies, use cloud-based services for email, storage, accounting and social interactions. These users essentially take what is offered by their cloud providers with respect to privacy and security, and will clearly benefit from the improved security and privacy offered by SafeCloud. We also believe that SafeCloud will contribute to the European society as a whole by keeping the EU at the forefront of privacy protection rights. The technology developed as part of the project will thus be of interest for international private and commercial entities that might consider the privacy and security offered by European cloud providers for long-term preservation and processing of their data. One of the key long-term ambitious goals of this project is thus to exploit and integrate increased privacy technologies into mass market products. Although part of this objective comes from novel scientific contributions, it is also important to bring existing knowledge from distributed systems and information security to practice. We would like this project to be a catalyst for cloud service providers starting to offer privacy-enhanced services on a large scale by showing them that it can be achieved at reasonable cost and without noticeable performance degradation.
SafeCloud will re-architect cloud infrastructures to ensure that data transmission, storage, and processing can be (1) partitioned in multiple administrative domains that are unlikely to collude, so that sensitive data can be protected by design; (2) entangled with inter-dependencies that make it impossible for any of the domains to tamper with its integrity. These two principles (partitioning and entanglement) are thus applied holistically across the entire data management stack, from communication to storage and processing. Users will control the choice of non-colluding domains for partitioning and the tradeoffs between entanglement and performance, and thus will have full control over what happens to their data. This will make users less reluctant to manage their personal data online due to privacy concerns and will generate positive business cases for privacy-sensitive online applications such as the distributed cloud infrastructure and medical record storage platform that we address.