Secure Big Data Processing in Untrusted Clouds

Informacje na temat projektu

SecureCloud

Identyfikator umowy o grant: 690111

Strona internetowa projektu

DOI

10.3030/690111

Projekt został zamknięty

Data podpisania przez KE 29 Października 2015

Data rozpoczęcia 1 Stycznia 2016

Data zakończenia 31 Grudnia 2018

Finansowanie w ramach

INDUSTRIAL LEADERSHIP - Leadership in enabling and industrial technologies - Information and Communication Technologies (ICT)

Koszt całkowity

€ 2 285 377,00

Wkład UE

€ 1 499 627,00

1 499 627,00

785 750,00

Koordynowany przez

TECHNISCHE UNIVERSITAET DRESDEN
Germany

CORDIS oferuje możliwość skorzystania z odnośników do publicznie dostępnych publikacji i rezultatów projektów realizowanych w ramach programów ramowych HORYZONT.

Odnośniki do rezultatów i publikacji związanych z poszczególnymi projektami 7PR, a także odnośniki do niektórych konkretnych kategorii wyników, takich jak zbiory danych i oprogramowanie, są dynamicznie pobierane z systemu OpenAIRE .

Rezultaty

Requirements & architecture specification – initial version

This report will contain an initial description of the uses-cases and scenarios. It will list end-user requirements as well as technical, functional and non-functional ones. A coarse description of the architecture and the components of the SecureCloud platform will be included.

Analysis of existing technologies

Analysis of existing hardware technologies for supporting secure processing and a project of services APIs that define how these technologies can be exploited in the context of secure cloud computing.

Description of dependability mechanism used by the micro-service framework

This deliverable will describe the dependability approach used to make micro-services robust to failures.

Data management plan

This report includes the procedures to manage the data gathered in the demonstrators. This deliverable will evolve during the lifetime of the project in order to present the status of the project's reflections on data management.

Requirements & architecture specification – final version

This report contains the final uses-cases, requirements and fine-grained architecture of the SecureCloud platform incorporating the lessons learned from the execution of WP5 demonstrators.

Perdiodic dissemination and clustering activities report (3 versions)

Annual Reports (due months 12, 24, 36) on the dissemination actions taken to promote the main project achievements, as well as interactions/synergies with related research initiatives. Small publication, containing highlights on major project achievements in the reporting period. Language style will be oriented to the public audience at large. (Contributing task: T6.1)

Integrated implementation of the micro-services for distributed big data applications

In this deliverable, the final implementations of the secure communication, distributed storage, map/reduce, and scheduling components of WP4 will be provided. These final versions will have been validated using continuous integration and validation mechanisms of WP1 and using use cases of WP5.

Standardization activities

Report on the activities undertaken for maximizing SecureCloud impact in terms of: i) industrial take-up, by ensuring that the proposed technology be compliant to the emerging standards in the field, and ii) contribution to standards, by approaching standardization bodies and possibly contributing to their work. Contributing task: T6.4

Specification and design of the micro-services for distributed big data applications

This deliverable will conclude the design phase in WP4. It will specify the interfaces and semantics of the main components of the work package, namely the secure communication, distributed storage, and map/reduce libraries.

Demonstrator for the end-to-end secure and privacy-friendly application for smart meter data

A demonstrator illustrating a data-processing application that considers data that should be known by neither the application nor the cloud providers.

Periodic project exploitation and use plan (2 versions)

Report (two releases, the first in M24 and the second in M36) on the market analysis and business plans by the involved partners associated with the specific market segments of the SecureCloud pilot domain as well as the SecureCloud potential market in general. Contributing task: T6.2.

Periodic research newsletter (3 versions)

Annual (3 versions due M12, M24 and M36) and jargon-free on-line publications providing direct and timely updates on project highlights. Contributing tasks: T6.1, T6.2.

Description of programming model for new micro-services

This deliverable will describe the programming model for new micro-services that makes them safe-by-design.

Requirements & architecture specification – intermediate version

Besides a refinement of the uses-cases and the requirements, this report will contain a detailed description of the fine-grained architecture of the SecureCloud platform including all the interfaces between the components.

Demonstrator for strict-QoS application with realistic workloads running in a secure cloud

A demonstrator illustrating a data-processing application that requires robust responsiveness (i.e., applications that actuate on the smart grid).

Preliminary implementation of the communication and storage mechanisms

This deliverable will provide a preliminary implementation of the communication and storage mechanisms (with complete API support but no security/dependability features).

Specification and implementation of the micro-service framework and API

This deliverable will describe the micro-service framework and document its associated API that will be used to implement micro-services. It also will provide a preliminary implementation of the micro-services and API.

Specification and implementation of reusable secure micro-services

This deliverable will describe the five generic secure micro-services that are developed by Task T3.2. It will provide as well an implementation of the micro-services with its feature-frozen API.

First implementation of the micro-services for distributed big data applications

This deliverable will contain the final implementation of the secure communication mechanisms, an advanced implementation of the distributed data store (with security but without privacy-aware scheduling support), a first prototype of the secure map/reduce framework, and basic scheduling mechanisms (not privacy-aware).

Monitoring and orchestration services for large, high-responsive applications

As described above, a new approach for monitoring and orchestration services will be implemented to enable fast reaction and QoS enforcement for applications that require both QoS and secure analytics with low response times.

Project web site

The project website is set up and put on-line. Every six months a snapshot of the Web site will be made and released as a DVD (possibly in bundle with additional dissemination materials). (Contributing task: T6.3)

Services for trust management for secure resources

This prototype will enable application and higher-level services prototypes to use the secure resources in the context of cloud computing. The first services will enable creation, deletion, , interconnection, accounting and scheduling of secure resources.

Cloud-native applications for billing, fraud detection, energy balance, energy delivering and fault detection

Set of applications that process data from smart grids in the cloud.

Publikacje

SecureCloud: Secure big data processing in untrusted clouds

Autorzy: Florian Kelbert, Franz Gregor, Rafael Pires, Stefan Kopsell, Marcelo Pasin, Aurelien Havet, Valerio Schiavoni, Pascal Felber, Christof Fetzer, Peter Pietzuch
Opublikowane w: Design, Automation & Test in Europe Conference & Exhibition (DATE), 2017, 2017, Strona(/y) 282-285, ISBN 978-3-9815370-8-6
Wydawca: IEEE
DOI: 10.23919/date.2017.7926999

SecureStreams - A Reactive Middleware Framework for Secure Data Stream Processing

Autorzy: Aurélien Havet, Rafael Pires, Pascal Felber, Marcelo Pasin, Romain Rouvoy, Valerio Schiavoni
Opublikowane w: Proceedings of the 11th ACM International Conference on Distributed and Event-based Systems - DEBS '17, 2017, Strona(/y) 124-133, ISBN 9781450350655
Wydawca: ACM Press
DOI: 10.1145/3093742.3093927

A Lightweight MapReduce Framework for Secure Processing with SGX

Autorzy: Rafael Pires, Daniel Gavril, Pascal Felber, Emanuel Onica, Marcelo Pasin
Opublikowane w: 2017 17th IEEE/ACM International Symposium on Cluster, Cloud and Grid Computing (CCGRID), 2017, Strona(/y) 1100-1107, ISBN 978-1-5090-6611-7
Wydawca: IEEE
DOI: 10.1109/CCGRID.2017.129

X-search - revisiting private web search using intel SGX

Autorzy: Sonia Ben Mokhtar, Antoine Boutet, Pascal Felber, Marcelo Pasin, Rafael Pires, Valerio Schiavoni
Opublikowane w: Proceedings of the 18th ACM/IFIP/USENIX Middleware Conference on - Middleware '17, 2017, Strona(/y) 198-208, ISBN 9781-450347204
Wydawca: ACM Press
DOI: 10.1145/3135974.3135987

GENPACK: A Generational Scheduler for Cloud Data Centers

Autorzy: Aurelien Havet, Valerio Schiavoni, Pascal Felber, Maxime Colmant, Romain Rouvoy, Christof Fetzer
Opublikowane w: 2017 IEEE International Conference on Cloud Engineering (IC2E), 2017, Strona(/y) 95-104, ISBN 978-1-5090-5817-4
Wydawca: IEEE
DOI: 10.1109/ic2e.2017.15

Cloudifying Critical Applications: A Use Case from the Power Grid Domain

Autorzy: F. Campanile, L. Coppolino, S. DAntonio, L. Lev, G. Mazzeo, L. Romano, L. Sgaglione, F. Tessitore
Opublikowane w: 2017 25th Euromicro International Conference on Parallel, Distributed and Network-based Processing (PDP), 2017, Strona(/y) 363-370, ISBN 978-1-5090-6058-0
Wydawca: IEEE
DOI: 10.1109/pdp.2017.50

SGXBOUNDS - Memory Safety for Shielded Execution

Autorzy: Dmitrii Kuvaiskii, Oleksii Oleksenko, Sergei Arnautov, Bohdan Trach, Pramod Bhatotia, Pascal Felber, Christof Fetzer
Opublikowane w: Proceedings of the Twelfth European Conference on Computer Systems - EuroSys '17, 2017, Strona(/y) 205-221, ISBN 9781-450349383
Wydawca: ACM Press
DOI: 10.1145/3064176.3064192

Developing a secure SQL/key-value translation service

Autorzy: BOBERG, D. ; GOMES-JR, L. C. ; ROSA, M. O. ; FONSECA, K. V. O
Opublikowane w: PROCEEDINGS OF THE WORKSHOP DE PESQUISA EM COMPUTAÇÃO DOS CAMPOS GERAIS - 2017 (WPCCG’2017), 2017
Wydawca: WPCCG

Secure and Privacy-Aware Data Dissemination for Cloud-Based Applications

Autorzy: Lilia Sampaio, Fábio Silva, Amanda Souza, Andrey Brito, Pascal Felber
Opublikowane w: Proceedings of the10th International Conference on Utility and Cloud Computing - UCC '17, 2017, Strona(/y) 47-56, ISBN 9781450351492
Wydawca: ACM Press
DOI: 10.1145/3147213.3147230

Secure Content-Based Routing Using Intel Software Guard Extensions

Autorzy: Rafael Pires, Marcelo Pasin, Pascal Felber, Christof Fetzer
Opublikowane w: Proceedings of the 17th International Middleware Conference on - Middleware '16, 2016, Strona(/y) 1-10, ISBN 9781-450343008
Wydawca: ACM Press
DOI: 10.1145/2988336.2988346

FFQ: A Fast Single-Producer/Multiple-Consumer Concurrent FIFO Queue

Autorzy: Sergei Arnautov, Pascal Felber, Christof Fetzer, Bohdan Trach
Opublikowane w: 2017 IEEE International Parallel and Distributed Processing Symposium (IPDPS), 2017, Strona(/y) 907-916, ISBN 978-1-5386-3914-6
Wydawca: IEEE
DOI: 10.1109/ipdps.2017.41

DynSGX: A Privacy Preserving Toolset for Dinamically Loading Functions into Intel(R) SGX Enclaves

Autorzy: Rodolfo Silva, Pedro Barbosa, Andrey Brito
Opublikowane w: 2017 IEEE International Conference on Cloud Computing Technology and Science (CloudCom), 2017, Strona(/y) 314-321, ISBN 978-1-5386-0692-6
Wydawca: IEEE
DOI: 10.1109/CloudCom.2017.42

Glamdring: Automatic Application Partitioning for Intel {SGX}

Autorzy: Lind, J; Priebe, C; Muthukumaran, D; O'Keeffe, D; Aublin, P; Kelbert, F; Reiher, T; Goltzsche, D; Eyers, D; Kapitza, R; Fetzer, C; Pietzuch, P
Opublikowane w: Proceedings of the 2017 USENIX Annual Technical Conference (USENIX ATC ’17), 2017
Wydawca: USENIX ATC
DOI: 10044/1/48105

Security and privacy preserving data aggregation in cloud computing

Autorzy: Leandro Ventura Silva, Rodolfo Marinho, Jose Luis Vivas, Andrey Brito
Opublikowane w: Proceedings of the Symposium on Applied Computing - SAC '17, 2017, Strona(/y) 1732-1738, ISBN 9781-450344869
Wydawca: ACM Press
DOI: 10.1145/3019612.3019795

Introducing SECURESTREAMS: Scalable Middleware for Reactive and Secure Data Stream Processing

Autorzy: Aurelien Havet, Valerio Schiavoni, Pascal Felber, Romain Rouvoy
Opublikowane w: 2017 IEEE International Conference on Cloud Engineering (IC2E), 2017, Strona(/y) 1-4, ISBN 978-1-5090-5817-4
Wydawca: IEEE
DOI: 10.1109/IC2E.2017.50

Troxy: Transparent Access to Byzantine Fault-Tolerant Systems

Autorzy: Bijun Li, Nico Weichbrodt, Johannes Behl, Pierre-Louis Aublin, Tobias Distler, Rudiger Kapitza
Opublikowane w: 2018 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN), 2018, Strona(/y) 59-70, ISBN 978-1-5386-5596-2
Wydawca: IEEE
DOI: 10.1109/dsn.2018.00019

sgx-perf - A Performance Analysis Tool for Intel SGX Enclaves

Autorzy: Nico Weichbrodt, Pierre-Louis Aublin, Rüdiger Kapitza
Opublikowane w: Proceedings of the 19th International Middleware Conference on - Middleware '18, 2018, Strona(/y) 201-213, ISBN 9781450357029
Wydawca: ACM Press
DOI: 10.1145/3274808.3274824

SecureKeeper - Confidential ZooKeeper using Intel SGX

Autorzy: Stefan Brenner, Colin Wulf, David Goltzsche, Nico Weichbrodt, Matthias Lorenz, Christof Fetzer, Peter Pietzuch, Rüdiger Kapitza
Opublikowane w: Proceedings of the 17th International Middleware Conference on - Middleware '16, 2016, Strona(/y) 1-13, ISBN 9781-450343008
Wydawca: ACM Press
DOI: 10.1145/2988336.2988350

SGX-Aware Container Orchestration for Heterogeneous Clusters

Autorzy: Sebastien Vaucher, Rafael Pires, Pascal Felber, Marcelo Pasin, Valerio Schiavoni, Christof Fetzer
Opublikowane w: 2018 IEEE 38th International Conference on Distributed Computing Systems (ICDCS), 2018, Strona(/y) 730-741, ISBN 978-1-5386-6871-9
Wydawca: IEEE
DOI: 10.1109/ICDCS.2018.00076

LibSEAL - revealing service integrity violations using trusted execution

Autorzy: Pierre-Louis Aublin, Peter Pietzuch, Florian Kelbert, Dan O'Keeffe, Divya Muthukumaran, Christian Priebe, Joshua Lind, Robert Krahn, Christof Fetzer, David Eyers
Opublikowane w: Proceedings of the Thirteenth EuroSys Conference on - EuroSys '18, 2018, Strona(/y) 1-15, ISBN 9781-450355841
Wydawca: ACM Press
DOI: 10.1145/3190508.3190547

EndBox: Scalable Middlebox Functions Using Client-Side Trusted Execution

Autorzy: David Goltzsche, Signe Rusch, Manuel Nieke, Sebastien Vaucher, Nico Weichbrodt, Valerio Schiavoni, Pierre-Louis Aublin, Paolo Cosa, Christof Fetzer, Pascal Felber, Peter Pietzuch, Rudiger Kapitza
Opublikowane w: 2018 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN), 2018, Strona(/y) 386-397, ISBN 978-1-5386-5596-2
Wydawca: IEEE
DOI: 10.1109/dsn.2018.00048

Secure and Scalable Key Value Storage for Managing Big Data in Smart Cities Using Intel SGX

Autorzy: Daniel Enrique Lucani, Marcell Feher, Keiko Fonseca, Marcelo Rosa, Bogdan Despotov
Opublikowane w: 2018 IEEE International Conference on Smart Cloud (SmartCloud), 2018, Strona(/y) 70-76, ISBN 978-1-5386-8000-1
Wydawca: IEEE
DOI: 10.1109/smartcloud.2018.00020

Cloud Challenge: Secure End-to-End Processing of Smart Metering Data

Autorzy: Andrey Brito, Christof Fetzer, Stefan Kopsell, Marcelo Pasin, Pascal Felber, Keiko Fonseca, Marcelo Rosa, Luiz Gomes, Rodrigo Riella, Charles Prado, Luiz F.R. da Costa Carmo, Daniel Lucani, Marton Sipos, Laszlo Nagy, Marcell Feher
Opublikowane w: 2018 IEEE/ACM International Conference on Utility and Cloud Computing Companion (UCC Companion), 2018, Strona(/y) 36-42, ISBN 978-1-7281-0359-4
Wydawca: IEEE
DOI: 10.1109/ucc-companion.2018.00031

ShieldBox - Secure Middleboxes using Shielded Execution

Autorzy: Bohdan Trach, Alfred Krohmer, Franz Gregor, Sergei Arnautov, Pramod Bhatotia, Christof Fetzer
Opublikowane w: Proceedings of the Symposium on SDN Research - SOSR '18, 2018, Strona(/y) 1-14, ISBN 9781-450356640
Wydawca: ACM Press
DOI: 10.1145/3185467.3185469

CYCLOSA: Decentralizing Private Web Search through SGX-Based Browser Extensions

Autorzy: Rafael Pires, David Goltzsche, Sonia Ben Mokhtar, Sara Bouchenak, Antoine Boutet, Pascal Felber, Rudiger Kapitza, Marcelo Pasin, Valerio Schiavoni
Opublikowane w: 2018 IEEE 38th International Conference on Distributed Computing Systems (ICDCS), 2018, Strona(/y) 467-477, ISBN 978-1-5386-6871-9
Wydawca: IEEE
DOI: 10.1109/ICDCS.2018.00053

Privacy-preserving recommendations for Online Social Networks using Trusted Execution

Autorzy: Guilmour Rossi, Luiz Gomes-Jr, Marcelo Rosa, Keiko Fonseca
Opublikowane w: Xviii Simpósio Brasileiro Em Segurança Da Informação E De Sistemas Computacionais, 2018, Strona(/y) 41-48
Wydawca: Sociedade Brasileira de Computação

IBBE-SGX: Cryptographic Group Access Control Using Trusted Execution Environments

Autorzy: Stefan Contiu, Rafael Pires, Sebastien Vaucher, Marcelo Pasin, Pascal Felber, Laurent Reveillere
Opublikowane w: 2018 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN), 2018, Strona(/y) 207-218, ISBN 978-1-5386-5596-2
Wydawca: IEEE
DOI: 10.1109/DSN.2018.00032

Securing Smart Metering applications in Untrusted Clouds with the SecureCloud Platform

Autorzy: Rodrigo J. Riella, Luciana M. Iantorno, Laerte C. R. Junior, Dilmari Seidel, Keiko V. O. Fonseca, Luiz Gomes-Jr, Marcelo O. Rosa
Opublikowane w: Proceedings of the 1st Workshop on Privacy by Design in Distributed Systems - W-P2DS'18, 2018, Strona(/y) 1-6, ISBN 9781-450356541
Wydawca: ACM Press
DOI: 10.1145/3195258.3195263

Securing VoD Content with SGX: A Decryption Performance Evaluation in Client-Side

Autorzy: Ricardo de S. Costa, Daniel F. Pigatto, Keiko V. O. Fonseca, Marcelo de O. Rosa
Opublikowane w: Anais do Simpósio Brasileiro em Segurança da Informação e de Sistemas Computacionais (SBSeg), 2018, Strona(/y) 127-140
Wydawca: Sociedade Brasileira de Computação

An Approach for Securing Critical Applications in Untrusted Clouds

Autorzy: Luigi Coppolino, Salvatore D'Antonio, Giovanni Mazzeo, Gaetano Papale, Luigi Sgaglione, Ferdinando Campanile
Opublikowane w: 2018 26th Euromicro International Conference on Parallel, Distributed and Network-based Processing (PDP), 2018, Strona(/y) 436-440, ISBN 978-1-5386-4975-6
Wydawca: IEEE
DOI: 10.1109/PDP2018.2018.00076

LibSEAL: Detecting Service Integrity Violations Using Trusted Execution

Autorzy: Pierre-Louis Aublin, Florian Kelbert, Dan O’Keeffe, Divya Muthukumaran, Christian Priebe, Joshua Lind, Robert Krahn, Christof Fetzer, David Eyers, Peter Pietzuch
Opublikowane w: Proceedings of the Twelth European Conference on Computer Systems (EuroSys), 2017
Wydawca: ACM

TaLoS: Secure and Transparent TLS Termination inside SGX Enclaves

Autorzy: Pierre-Louis Aublin, Florian Kelbert, Dan O'Keeffe, Divya Muthukumaran, Christian Priebe, Joshua Lind, Robert Krahn, Christof Fetzer, David Eyers and Peter Pietzuch
Opublikowane w: 2017
Wydawca: Imperial College

Teechain: Scalable Blockchain Payments using Trusted Execution Environments

Autorzy: Joshua Lind, Ittay Eyal, Florian Kelbert, Oded Naor, Peter Pietzuch, Emin Gun Sirer
Opublikowane w: 2017
Wydawca: CoRR

Building Critical Applications Using Microservices

Autorzy: Christof Fetzer
Opublikowane w: IEEE Security & Privacy, Numer 14/6, 2016, Strona(/y) 86-89, ISSN 1540-7993
Wydawca: IEEE Computer Society
DOI: 10.1109/msp.2016.129

Wyszukiwanie danych OpenAIRE...

Rezultaty

Publikacje

Udostępnij tę stronę Udostępnij tę stronę w mediach społecznościowych

Pobierz Pobierz zawartość strony