SafeCloud: Secure and Resilient Cloud Architecture
Project responsable Hugues Mercier
Pascal Felber
Team member Valerio Schiavoni
Nathalie Tissot

Yves Bauer
Abstract Cloud infrastructures, despite all their advantages and importance to the competitiveness of modern economies, raise fundamental questions related to the privacy, integrity, and security of offsite data storage and processing tasks. These questions are currently not answered satisfactorily by existing technologies. Furthermore, recent developments in the wake of the expansive and sometimes unauthorised government access to private and sensitive data raise major privacy and security concerns about data located in the cloud, especially when data is physically located, processed, or must transit outside the legal jurisdiction of its rightful owner. This is exacerbated by providers of cloud services that frequently move and process data without notice in ways that are detrimental to the users and their privacy.

SafeCloud will re-architect cloud infrastructures to ensure that data transmission, storage, and processing can be (1) partitioned in multiple administrative domains that are unlikely to collude, so that sensitive data can be protected by design; (2) entangled with inter-dependencies that make it impossible for any of the domains to tamper with its integrity. These two principles (partitioning and entanglement) are thus applied holistically across the entire data management stack, from communication to storage and processing.

Users will control the choice of non-colluding domains for partitioning and the tradeoffs between entanglement and performance, and thus will have full control over what happens to their data. This will make users less reluctant to manage their personal data online due to privacy concerns and will generate important benefits for privacy-sensitive online applications such as distributed cloud infrastructures and medical record storage platforms.
Keywords Security, Privacy, Cloud Computing, Data Storage and Management, Integrity, Availability
Project homepage http://www.safecloud-project.eu
Type of project Fundamental research project
Research area Informatique
Method of financing Horizon 2020 - Research and Innovation Framework Programme
Status Completed
Start of project 1-9-2015
End of project 31-8-2018
Overall budget 814'000.00
Additional info The scientific and technical direction of the project is done by UniNE. The consortium partners are Cloud&Heat (Germany), Cybernetica (Estonia),
INESC-ID (Portugal), INESC TEC (Coordinator, Portugal), Maxdata Software (Portugal), Technische Universität München (Germany), and
Université de Neuchâtel (Scientific and technical direction, Switzerland).
Contact Hugues Mercier