In the course of the SME Event and Demonstrations session of Cloud Forward Conference 2016 (held in Madrid, Spain), UBITECH performs an interactive, live demonstration of the PaaSword data privacy and security by design platform-as-a-service framework. This innovative framework enhances advanced security in the next generation cloud applications by revolutionizing the cloud developers’ toolkit in order to protect them against internal and external adversaries. It enables security annotations, transparently in your IDE, transformed into context-aware security policies that enforce cryptographic protection and physical distribution for securing sensitive data.
In this context, UBITECH shows an interactive walkthrough on how to use PaaSword to make your cloud applications secure by design; exemplified by a PaaSword-enabled xERP application. UBITECH demonstrates how to create and update context models and access control policies and rules and how PaaSword annotations are appended to the Cloud Application code within your IDE at pre-bootstrapping time. At bootstrapping time, access policies are translated into inference engine’s rules based on policy sets and combining algorithms; knowledge is extracted from the context model; and the distributed key management mechanism is bootstrapped as well as all relevant data artefacts (distributed & encrypted). During run-time, any access request is intercepted and analysed; relevant context information is extracted and relevant access control policies are evaluated to decide if the request is granted or not. If the request is granted the process of serving the specific request continues while the application and user key shares are propagated to the trusted DB-proxy.
A video highlighting the main aspects of the demonstrator is available here.
Source: http://cf2016.holacloud.eu/smes-event/demonstrations/#demo12
