WITDOM presentation at Net Futures 2016
0 likes123 views
Witdom is a framework designed to provide end-to-end protection for outsourced data within untrusted ICT environments, focusing on privacy and security through various innovative techniques and methodologies. The initiative, operational from January 2015 to December 2017 with a budget of €4.02 million, seeks to enhance user trust and compliance with EU data protection regulations while addressing challenges in financial and e-health data scenarios. Key outcomes include several scientific publications and a holistic approach fostering the design of secure ICT systems that empower users and ensure data integrity.
WITDOM presentation at Net Futures 2016
- 1. witdom participates in: empoWering prIvacy and securiTy in non-trusteD envirOnMents General Presentation
- 2. empoWering prIvacy and securiTy in non-trusteD envirOnMents www.witdom.eu Duration: 1st January, 2015 – 31st December 2017 Budget: 4.020.281,25 €
- 3. What is the focus of witdom? WITDOM is a framework for end-to-end protection of outsourced data in untrusted and fast-evolving ICT-based environments. Framework Toolkits Building blocks Reference Implementations Guidelines Platform Scenarios Methodology Practical Level Implementation Level • Driven by PSbD principles. • Tools for effective protection of sensitive data. • Validation in two realistic application scenarios with high-demanding requirements of privacy and security.
- 4. Solution proposed Storage/ Data processing CLOUD PROVIDER Untrusted domain (i.e: public cloud) Trusted domain (i.e: private cloud) End-users Public Institution Regulator 3rd parties IT DEPARTMENT Operations Internal user Protected data Requests External usersTrusted users
- 5. Challenge: Financial scenario Protection of large-scale outsourced financial data storage and processing (financial risk calculation, fraud detection,...)
- 6. Challenge: e-Health scenario Genetic/proteomic databases protection, shared for large-scale research analyses and outsourced individual clinical analyses.
- 7. Main innovations Privacy Enhancing Techniques, perturbation mechanisms and privacy metrics Privacy- preserving cryptographic techniques supporting encrypted processing Cryptographic techniques for Integrity and Verifiability of outsourced processes European Legal Landscape Privacy metrics for sensitive outsourced data and quantifiable leakage and traces • Efficient HE • Current limitations in terms of full anonymisation • Produce efficient data processing techniques. • Integrity and consistency guarantees • Overcome current restrictions to simple storage services • Overcomes limitations in concurrent operation Evolution of the EU data protection regulation Holistic vision, with interrelated and entangled advance in all areas
- 8. Sought Impacts Macro level: • New paradigm for design and implementation of ICT • Measurably higher level of security and privacy at marginal additional cost • Products compliant with EU Data Protection legislation Societal level • Increased user trust in ICT services and protection of user privacy • Improved ability to detect breaches in security • More resilient critical infrast. and services with built-in trustworthiness Research & Innovation level • Simplified crypto primitives implementation, easy-to-manage security (reduced complexity of security infrast.) • Provable improved security than traditionally designed ICT • User empowerment over data and trust relations (user-centric tools to define / automatically enforce privacy preferences)
- 9. Major publications 9 Scientific publications – “Don't trust the cloud, verify: Integrity and consistency for cloud object stores” M. Brandenburger, C. Cachin, and N. Knezevi ˇ (IBM). Presented at the SYSTOR conference. – “Enhancing Co-Creation with Privacy- and Security-by-design” F. Alberti, S. Vicini (FSCR). Published as proceedings at ENoLL Research Day Conference. – “Engineering Privacy by Design Reloaded”. Seda Gurses, Claudia Diaz and Carmela Troncoso (UVIGO/Gradiant). Amsterdam Privacy Conference 2015 – “Convention 108: the international standard for data protection to come?” G. Verhenneman, F. Coudert (KU Leuven). Amsterdam Privacy Conference 2015. – “Co-Creating Security-and-Privacy-by-Design Systems” S. Vicini, F. Alberti, A.Sanna (FSRC), N. Notario, A. Crespo (ATOS), J.R. Troncoso-Pastoriza (UVIGO). Submitted to the Amsterdam Privacy Conference 2015. Submitted to SAC16. – “Enhancing Personas for Well-Being e-Services and Product Service Systems” S. Vicini, F. Alberti, A. Gariglio, A. Sanna (FSCR). Accepted by DUXU 2016 – “Number Theoretic Transforms for Secure Signal Processing”. J. Troncoso (UVIGO) et al. Submitted to Journal IEEE Transactions on Information Forensics and Security. – “Dynamic Privacy-Preserving Genomic Susceptibility Testing”. J. Troncoso (UVIGO) et al. Submitted to 4th ACM IH & MMSec 2016 (June 2016) – "Hardware Assisted Fully Homomorphic Function Evaluation". Submitted to CHES 2016 (August 2016). 2 White papers & vision papers – Contribution to DPSP cluster whitepaper: "Challenges for trustworthy (multi-)Cloud-based services in the Digital Single Market“ – Contribution to Canopy whitepaper "Enabling Trusted European Cloud"
- 10. Identified Future challenges • Generalization of the approach – ICT-18-2016: Big data PPP: privacy-preserving big data technologies – EUB-01-2017: Cloud Computing – DS-03-2016: Increasing digital security of health related data on a systemic level • Extend – New algorithms – New approaches – New scenarios • Semi-automatic composer – E.g. Smart orchestration