PRISMACLOUD provides a box of five flexible tools, fully encapsulating strong cryptographic functionality, from which secure and privacy aware cloud services can be constructed. The service provides storage and data sharing security, data minimising and privacy providing authentication and authorisation mechanisms, topology certification, anonymisation, and an encryption proxy for legacy applications.
In a post Snowden world, the currently prevailing threat modelling, with its focus on outsiders (hackers, rogue criminals etc.), is probably insufficient for modelling privacy threats in the cloud context.
This concerns not only the actual (private) data of an end user, but any Personally Identifiable Information (PII), including metadata that accrue by accessing the cloud and performing operations on-line. Several groups of end users are currently barred from moving to the cloud because of the strong confidentiality required for their data and processing. In particular, the upcoming GDPR will require data controllers to keep precautions for the protection of PII which might only be practically realised by the use of strong cryptography.
PRISMACLOUD addresses these challenges and yields a portfolio of novel security enabled cloud services, guaranteeing the required security for sensitive data in the cloud.