Key Management as-a-Service

Objective

Client-side or end-2-end encryption is all about encrypting data before it enters the cloud, and is recognized as the correct manner for securing data in cloud computing. Cloud service providers as well as users of cloud services are increasingly concerned about data protection and look for client-side encryption. However, no pure cloud based solution with true cryptographic security exists. Existing solutions require non-cloud installations, which limits the market from adopting client-side encryption. In fact, NIST calls this a fundamental technical problem. Nevertheless, we solve this problem and offer a pure cloud based and convenient encryption solution that unlike existing products does not rely on either trust in individual cloud service providers or physical encryption gateways. These properties are reached by a novel patent pending solution based on so- called Multi-Party Computation (MPC) protocols tailored to key management.
The main goal of the project, is to make Sepior ApS ready to scale the sale of the Sepior KMaaS product (pure cloud-based encryption solution) across Europe. This will be achieved by developing an API-based key management service and integration with existing cloud-providers’ services. The starting point is a prototype of KMaaS tailored to Dropbox, which is in closed beta testing by end-customers. Sepior has a complete financial plan for Phase 2 and 3 and committed co-financing to reach the ambitious Phase 2 goals given in the application.
There is significant market potential for a cloud based security solution that does not hamper the efficiency and growth potential in cloud computing, least of all for SME’s. The market for cloud security is expected to rise to $3.1 billion by 2015 and Gartner expects increasing interest in cloud-based encryption capabilities (Gartner, 2013). Sepior ApS is aiming to capture 10% market share of the EU cloud encryption software market by 2020, representing EUR 200 million per year.

Fields of science

• natural sciencescomputer and information sciencessoftware
• natural sciencescomputer and information sciencesdatabases
• natural sciencescomputer and information sciencescomputer securitydata protection
• natural sciencescomputer and information sciencescomputer securitynetwork security

Coordinator

Participants (3)