DELIVERABLE D6.6 - SECURECLOUD RESEARCH NEWSLETTER ISSUE 3

SecureCloud Secure Big Data Processing In Untrusted Clouds

RESEARCH NEWSLETTER IN TH IS ISSUE

SecureCloud Project Use Cases

Project Use Cases Page 1

Dissemination & Clustering Activities Page 2

Project Papers Page 4

Project Meetings Page 4

Call: H2020-EUB-2015 (3rd Coordinated Call)

Topic: EUB-1-2015: Cloud Computing, incl. security aspects

Duration: 01. Jan 2016 - 31. Dec 2018 (36 months)

Project cost: € 2,285,377

EU Contribution: € 1,499,627

Contact: https://www.securecloudproject.eu/

AT A GLANCE

European Coordinator: Prof. Dr. Christof Fetzer Technische Universität Dresden (DE) E-mail: Christof.Fetzer@tu-dresden.de

Brazilian Coordinator: Prof. Dr. Andrey Brito

Federal University of Campina Grande (Brazil) E-mail: andrey@computacao.ufcg.edu.br

The cloud computing has recently emerged as compelling paradigm for managing and delivery services over the Internet. However, the critical in-frastructure operators have legitimate concerns about the confidentiality, integ-rity and availability, in short the dependa-bility, of applications and their data hosted on a third-party cloud. Today, de-pendability has become a commercial imperative for cloud providers, especially to support cloud computing for critical in-frastructures, which need strong security requirements. The SecureCloud project, funded by the European Union’s Horizon H2020 for research, aims at removing technical impediments to dependable cloud computing, overtaking the barriers to a broad adoption of cloud computing in critical infrastructure domain.

The main goals of the SecureCloud pro-ject are:

- Ensure secure and efficient processing of sensitive data in untrusted clouds;

- Provide an effective solution to protect applications running on cloud against potential attacks from a compromised operating system or a compromised hy-pervisor;

- Enable a greater uptake of cost-effec-tive and environment-friendly cloud so-lutions.

- Promote innovative cloud solutions, in particular, for critical infrastructure appli-cations.

The demonstration scenario will be fo-cused on the smart grid domain. Smart grid applications offer the opportunity of an in-depth evaluation of the require-ments that sensitive big data applications may have when executing in the cloud. Seven different use cases are proposed to demonstrate how the approach and technologies used by the SecureCloud platform dramatically improve the de-pendability of smart grid critical opera-tions, including:

- Smart meter data reading, management and processing;

- Fault analysis and fraud detection;

- Dynamic electrical safety assessment

- Smart home data collection, processing and visualisation;

- Video storage and processing.

During the third year of project, the website has been restructured with a new landing page. The new structure improves through a powerful and dynamic page, which includes potential customers, platform and infrastruc-ture services.

The new SecureCloud landing page

SecureCloud at DSN 2018

Andrey Brito from UFCG gave a short talk about SecureCloud at the DSN 2018 - 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks Work-shops (DSN-W) (2018).

DSN has pioneered the fusion between de-pendability and security research, under-standing the need to simultaneously fight against accidental faults, intentional cyber-at-tacks, design errors, and unexpected operat-ing conditions. DSN is also providing a fruitful ground for academia and industry interac-tion.

Andrey Brito presenting SecureCloud at DSN 2018

SecureCloud collaboration with companies

UTFPR presented the SecureCloud project to SANEPAR workers, suppliers and contractors, as well as, students and public in general, in a special event that took place at SANEPAR premises on July 4th, 2018, in Curitiba -PR, Brazil. The attendance exceeded the expec-tations, with a public greater than 80 partici-pants. All presentations of the UTFPR re-searchers were followed by a debate open to the public.

SANEPAR is a company that provides treated water supply, sewage collection and treat-ment and solid waste management services. It is responsible for the provision of sanitation services in 345 cities in Paraná and another 291 smaller areas, in addition to the Santa Ca-tarina municipality of Porto União. SANEPAR has an 84,600 kilometre network for the with-drawal and distribution of drinking water, for sewage collection and for the discharge of treated sewage.

http://site.sanepar.com.br/investors/about-sanepar

Loco Media (a Brazilian company) is working with UFCG to evaluate SGX and SCONE to protect sensitive information from their ad-vertisement platform. This started in Novem-ber, 2017.

Common Dissemination Booster: SecureCloud success in Service 4

SecureCloud consortium is part of the Com-mon Dissemination Booster (CDB) services. CDB is a European Commission brand-new set of services available for ongoing or closed European, National and Regional funded Re-search & Innovation (R&I) projects (H2020, FP7 or other). The booster encourages pro-jects to come together to identify a common portfolio of results and shows them how best to disseminate to end-users, with an eye on exploitation opportunities. It offers an exper-tise team for providing a support in the port-folio identification, end-user mapping, dis-semination and campaign planning. The clus-ter is composed by the following EU projects: MUSA, PRISMACLOUD, SECURECLOUD, SERECA, SPECS, SUNFISH, SWITCH, TREDISEC and UNICORN.

As part of the Common Dissemination Booster (CDB) project, indeed, SecureCloud consortium has participated in several calls concerning the individuation of stakeholders and end-users and the definition of a dissem-ination plan development.

In addition, in August 2018 the Consortium has attended three courses on the Dissemi-nation Capacity building (Service 4), which have covered the following topics:

• how to disseminate effectively in a tar-geted manner the outcomes of the pro-ject to stakeholders;

CONSORTIU M Dissemination & Clustering Activities The SecureCloud consortium is formed by 14 members, coming from 7 different countries (Brazil, Denmark, Germany, Israel, Italy, Swit-zerland and United Kingdom):

European partners

● Technische Universität Dresden (Germany)

● Imperial College (United Kingdom)

● University of Neuchâtel (Switzerland)

● Chocolate Cloud ApS (Denmark)

● Synclab S.r.l. (Italy)

● Israel Electric Corporation Ltd (Israel)

● CloudSigma AG (Switzerland)

Brazilian partners

● Instituto de Tecnologia para o Desenvolvi-mento (Brazil)

● Federal University of Campina Grande (Brazil)

● Federal University of Technology - Paraná (Brazil)

● Federal University of Itajuba (Brazil)

● Copel Distribuição SA (Brazil)

● CAS Tecnologia S/A (Brazil)

● Intituto Nacional de Metrologia, Qualidade e Tecnologia (Brazil)

SECURECLOUD RESEARCH NEWSLETTER | ISSUE 3 3

SecureCloud has received funding from the European Union’s Horizon 2020 research and innovation programme and was supported by the Swiss State Secretariat for Education, Research and Innovation (SERI) and MCTI/RNP 3rd Coordinated Call under grant agreement No 690111.

• how to measure dissemination success, and detailed website and social media access statistics;

• how to produce high-quality knowledge products in forms which are available, accessible and usable to target audi-ences;

• how to extend the means of disseminat-ing project results beyond the traditional ones (i.e., web-based dissemination and participation of academic partners in conferences/workshops as well as publi-cation of project results in top-ranked scientific journals).

SecureCloud can be proud of being the first partner of CDB to complete the assignments of the Service 4 courses, and providing an analysis survey, according to Rob Carrillo -the Deputy Coordinator for the European Com-mission's Common Dissemination Booster.

Moreover, based on the Portfolio Dissemina-tion Plan of CDB Service 5, SecureCloud has implemented the PDP Action "website" cre-ating a specific TRUSTEE section dedicated to the project cluster results and information. The TRUSTEE section will indicate the cloud Service Catalogue, with respective services and projects.

The TRUSTEE section assures that the above-mentioned groups are reached by all the in-formation and the results of the projects op-erating within the cluster, guaranteeing knowledge transfers and exchange not only between partners but also with other Euro-pean projects and entities working in the same field, creating a network of exchange and mutual learning. This provides swift and efficient interactions for fruitful information interchange, and cooperation on common ideas that could serve for multiple projects, encouraging new developments and re-search in the field of cloud security.

In a nutshell, dissemination overarching goal is to ensure commercialisation and future sustainability of projects outputs.

SecureCloud at IFIP WG 10.4

Andrey Brito (UFCG), Christof Fetzer (TUD) and Pascal Felber (UniNE) presented at the Workshop on Emerging Challenges for Resil-ience of Critical Cloud-based Operations: When Privacy Meets Availability.

Presentations are available at the event pro-gram page:

http://webhost.laas.fr/TSF/IFIPWG/Work-shops&Meetings/73/

The workshop was held during the IFIP Work-ing Group 10.4 on Dependable Computing and Fault Tolerance -the 73rd Meeting- in Goa (India), on January 11-15 2018. The main activity of WG 10.4 is to conduct in-depth dis-cussions of important technical topics in the form of focused workshops. A principal theme since the first meeting has been the understanding and exposition of the funda-mental concepts of dependable computing. Other major topics that have been the sub-ject of workshops recently include evaluation of dependability and resiliency, experimental methods, dependable operating systems, and failure diagnosis.

SecureCloud at the Brazilian work-shop CIDACS UFCG attended Oficina: Informação para governança e o desenvolvimento de territó-rios saudáveis e sustentáveis (CIDACS, coor-dinated by Fiocruz) (Workshop – Information for Governance e the Development of Healthy and Sustainable territories) in Salva-dor/BA – January 30th and February, 1st, 2018. Salvador has personal data about 100 million of inhabitants (social program data).

UFCG has presented the SecureCloud plat-form as an alternative to the secure room ap-proach used currently (the data is stored and analysed in a computer room that is discon-nected from the Internet). They are choosing a use case to use for evaluation.

Cloud and SGX tutorial at SBAC-PAD 2018 symposium

On Monday, 24 September 2018 Marcelo Pasin from UniNE presented a tutorial on ''Secure Execution in the Cloud Using Intel SGX'' for the conference SBAC-PAD 2018, 30th International Symposium on Computer

Architecture and High Performance Compu-ting (Sep 24-76) in Lyon, France.

Invited talk at the University of Coimbra Daniel Lucani from Chocolate Cloud was in-vited to give a talk on the goals and achieve-ments of the SecureCloud project on Octo-ber 1st, 2018 at the University of Coimbra in Portugal. Daniel talked about the Secure Key-Value Store and the performance implica-tions of performing erasure coding inside SGX enclaves. He also touched on the bene-fits of using Trusted Execution Environments for cloud computing.

SECURECLOUD RESEARCH NEWSLETTER | ISSUE 3 4

SecureCloud has received funding from the European Union’s Horizon 2020 research and innovation programme and was supported by the Swiss State Secretariat for Education, Research and Innovation (SERI) and MCTI/RNP 3rd Coordinated Call under grant agreement No 690111.

Additional events and information are available on the SecureCloud project web page and social ac-counts.

Project Papers

“LibSEAL: Revealing Service Integrity Violations Using Trusted Execution”

EuroSys '18 The Thirteenth EuroSys Conference, April 23 - 26 2018, Porto, Portugal.

“Securing Smart Metering applications in Un-trusted Clouds with the SecureCloud Platform”

W-P2DS'18 Proceedings of the 1st Workshop on Privacy by Design in Distributed Systems, Porto, Portugal — April 23 - 26, 2018.

“Securing VoD Content with SGX: A Decryption Performance Evaluation in Client-Side”

XVIII Brazilian Symposium on Information Secu-rity and Computational Systems - SBSEG’18, 2018, Natal, Brazil

”Privacy-preserving recommendations for Online Social Networks using Trusted Execution Environ-ments”

XVIII Brazilian Symposium on Information Secu-rity and Computational Systems - SBSEG’18, 2018, Natal, Brazil

“An Approach for Securing Critical Applications in Untrusted Clouds”

The 26th Euromicro International Conference on Parallel, Distributed and Network-based Pro-cessing (PDP), 2018, Cambridge, UK

“EndBox: Scalable Middlebox Functions Using Cli-ent-Side Trusted Execution”

“Troxy: Transparent Access to Byzantine Fault-Tol-erant Systems”

DSN ’18 The 48th Annual IEEE/IFIP International Conference on Dependable Systems and Net-works, June 25 – 28 2018, Luxembourg, Luxem-bourg

“sgx-perf: A Performance Analysis Tool for Intel SGX Enclaves”

Middleware ’18 The 19th ACM/IFIP International Middleware Conference, December 10 – 14 2018, Rennes, France

“Secure and Scalable Key Value Storage for Man-aging Big Data in Smart Cities Using Intel SGX”

2018 IEEE International Conference on Smart Cloud (SmartCloud), October 21--23 2018, New York, USA

Project Meetings During the third project year, the SecureCloud consortium met three times. During these meet-ings the project updates and status were evalu-ated and subgroups meetings on specific topics were held. Through these sessions other projects for potential collaborations were selected.

Review Meeting, March 2018 in Brus-sels, Belgium

The second SecureCloud Review Meeting took place in Brussels (Be) on March 28-29, 2018. In Bel-gium each technological provider has highlighted the achieved results in the development of the

components that will be used for the implemen-tation of the SecureCloud platform. The proper-ties and functionality of the components provided by the SecureCloud platform were presented.

Plenary Meeting, February 2018 in Curitiba, Brazil

The fourth Plenary Meeting was held on February 28-30, 2018 in Curitiba, Brazil. During this meeting, partners discussed updates for the second year report, integrated architecture of SecureCloud, and planned the integrated demo for the second review meeting of March.

Plenary Meeting, August 2018 in Haifa, Israel

The fifth Plenary Meeting was held on August 28-30, 2018 in Haifa, Israel. During this meeting each partners has highlighted the activity updates, and revision of plans after the second review in Brus-sels in March 2018. The future strategies such as the planning for the final review meeting were dis-cussed.

The SecureCloud platform

@h2020securecloud

h2020securecloud

@H2020SecCloud

www.securecloudproject.eu

SecureCloud meeting at Curitiba on February 2018