SecureCloud - Secure Big Data Processing in Untrusted Clouds
-
Contact: Tobias Reiher
Description
Cloud computing has become an essential part of many IT systems, since it enables high performance, scalability and availability for lower costs. Due to its advantages there is an increasing demand to use cloud computing for critical infrastructures, such as financial services, health care and smart grids. But this particular areas of application have also high requirements with regard to dependability, which prevents a widespread utilisation of cloud computing in this domain. The SecureCloud project aims to remove technical impediments to dependable cloud computing, so that the confidentiality, integrity and availability of critical applications and their data can be guaranteed, even if the application is executed in a distributed cloud infrastructure which is potentially untrusted. The innovative approach to cloud dependability pursued in the SecureCloud project leverages the emergence of a new and promising secure commodity CPUs—which promises to enable a new generation of dependable applications by basing trust in hardware mechanisms offered by commodity CPUs, in particular, Intel´s Secure Guard eXtensions (SGX). This permits applications to be isolated not only from other applications in the cloud but also from the underlying operating system and the hypervisor. It allows users to run their sensitive applications in a public cloud without the need to unconditionally trust the cloud provider. The SecureCloud project is part of the European Union´s Horizon 2020 research and innovation programme and is funded under grant agreement No 690111.