A new paper of UBITECH, with the title “PaaSword: A Holistic Data Privacy and Security by Design Framework for Cloud Services”, has been accepted to be presented at the SecureCloud 2016 conference (held on May 24-25, at the Aviva Stadium, Dublin) that is organized by the Cloud Security Alliance (CSA) and had (this year) a 26,6% of acceptance rate. The presentation of Dr. Panagiotis Gouvas and his co-authors focus on the PaaSword framework (supported by the Horizon 2020 research and innovation programme of the European Commission), which intends to maximize and fortify the trust of individual, professional and corporate users to Cloud services and applications, by providing storage protection mechanisms, which improves confidentiality and integrity protection of users’ data in the Cloud while it does not affect the data access functionality. Specifically, PaaSword introduces a holistic data privacy and security by design framework with main aim to protect users’ sensitive data stored in the Cloud, based on a searchable encryption scheme enhanced with sophisticated context-aware access control mechanisms, as well as on an innovative approach for key management that maximizes customers’ control over their data. PaaSword intends not only to adopt the CSA Cloud security principles, but also to extend them by capitalizing on recent innovations on distributed encryption and virtual database middleware technologies that introduce a scalable secure Cloud database abstraction layer combined with sophisticated distribution and encryption methods into the processing and querying of data stored in the Cloud.
Finally, in terms of the SecureCloud 2016, Dr. Panagiotis Gouvas also intends to present the recently developed context-aware policy model that drives an attribute-based access control imposed by the PaaSword framework, and to demonstrate short experiments that highlight the added value of a semantic XACML engine that we are currently developing and that it enhances policy enforcement points with context at run-time.
Source: https://csacongress.org/event/securecloud-2016/#agenda
