SecureCloud: Secure Big Data Processing in Untrusted Clouds

Florian Kelbert^1,a, Franz Gregor^2,c, Rafael Pires^3,f, Stefan Köpsell^2,d, Marcelo Pasin^3,g, Aurélien Havet^3,h, Valerio Schiavoni^3,i, Pascal Felber^3,j, Christof Fetzer^2,e and Peter Pietzuch^1,b
1Imperial College London, United Kingdom.
^afkelbert@imperial.ac.uk
^bprp@imperial.ac.uk
²TU Dresden, Germany.
^cfranz.gregor@tu-dresden.de
^dstefan.kopsell@tu-dresden.de
^echristof.fetzer@tu-dresden.de
³University of Neuchatel, Switzerland.
^frafael.pires@unine.ch
^gmarcelo.pasin@unine.ch
^haurelien.havet@unine.ch
ⁱvalerio.schiavoni@unine.ch
^jpascal.felber@unine.ch

ABSTRACT

We present the SecureCloud EU Horizon 2020 project, whose goal is to enable new big data applications that use sensitive data in the cloud without compromising data security and privacy. For this, SecureCloud designs and develops a layered architecture that allows for (i) the secure creation and deployment of secure micro-services; (ii) the secure integration of individual micro-services to full-fledged big data applications; and (iii) the secure execution of these applications within untrusted cloud environments. To provide security guarantees, SecureCloud leverages novel security mechanisms present in recent commodity CPUs, in particular, Intel's Software Guard Extensions (SGX). SecureCloud applies this architecture to big data applications in the context of smart grids. We describe the SecureCloud approach, initial results, and considered use cases.

---

Full Text (PDF)

© 2017 EDAA. All rights reserved.