SecureCloud - Secure Big Data Processing in Untrusted Clouds

SecureCloud tackles the challenge of maintaining data confidentiality during cloud-based computation, beyond the already common protection of data at rest and in transit. It leverages hardware features like Intel SGX to isolate sensitive computations from potentially compromised cloud software stacks, ensuring security even without physical control over the hardware.

The project focuses on secure and reliable Big Data processing using microservices, protecting only the core data-processing logic while leaving auxiliary functions outside the trusted base. It includes mechanisms to detect and recover from compromised environments. The approach will be validated through a smart grid use case, involving distributed infrastructure, limited physical security, and untrusted administrators.

Project Summary

  • 2016 - 2019
  • Horizon 2020 #690111
  • Research and Innovation Action
  • 14 Participants
  • EU - Brazil Collaboration
  • €2.3M Total Budget

Chocolate Cloud Involvement

  • Project Partner
  • 2x Task Leader
  • 28 Person Months

Chocolate Cloud implemented their erasure coding scheme inside an Intel SGX enclave, securing both coefficient generation and fragment creation. This prevents data leakage, ensuring safe erasure coding in untrusted environments.

SecureCloud applications consist of a set of micro-services connected by an event bus. Our main focus is to enhance the security of containers. These containers might share the host with virtual machines, i.e., the system will still contain a hypervisor.

Project Consortium

A collaborative partnership of academic researchers and industry experts, combining scientific innovation and technological expertise to ensure the successful implementation and impactful outcomes of ReSCALE.

Got a project to discuss?
Reach out!

Whether you're leading a new project or know one taking shape, we’d love to connect—reach out and let’s see how we can contribute!