PaaSword: A Holistic Data Privacy and Security by Design Framework for Cloud Services

Verginadis, Yiannis; Michalas, Antonis; Gouvas, Panagiotis; Schiefer, Gunther; Hübsch, Gerald; Paraskakis, Iraklis

doi:10.1007/s10723-017-9394-2

Cited by 33 publications

(9 citation statements)

References 38 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This upgrade will allow MemTri to effectively locate evidence in the context of any specified criminal investigation, thus making it practical for use in a real-life environment. In addition to that, we plan to integrate our tool in a trusted cloud environment such as the one presented in [20,21,32,33] and allow users from different geographical locations to enhance the dictionary based on their experience. Finally, adding a weight on each of the existing words has the potential to improve the effectiveness of our tool since it will be easier for a digital investigator to identify real criminal activities and categorize them by their importance.…”

Section: Resultsmentioning

confidence: 99%

MemTri

Michalas

Murray

2017

Proceedings of the 2017 International Workshop on Managing Insider Security Threats

Self Cite

View full text Add to dashboard Cite

This work explores the development of MemTri. A memory forensics triage tool that can assess the likelihood of criminal activity in a memory image, based on evidence data artefacts generated by several applications. Fictitious illegal suspect activity scenarios were performed on virtual machines to generate 60 test memory images for input into MemTri. Four categories of applications (i.e. Internet Browsers, Instant Messengers, FTP Client and Document Processors) are examined for data artefacts located through the use of regular expressions. These identified data artefacts are then analysed using a Bayesian Network, to assess the likelihood that a seized memory image contained evidence of illegal firearms trading activity. MemTri's normal mode of operation achieved a high artefact identification accuracy performance of 95.7% when the applications' processes were running. However, this fell significantly to 60% as applications processes' were terminated. To explore improving MemTri's accuracy performance, a second mode was developed, which achieved more stable results of around 80% accuracy, even after applications processes' were terminated.

show abstract

Section: Resultsmentioning

confidence: 99%

MemTri

Michalas

Murray

2017

Proceedings of the 2017 International Workshop on Managing Insider Security Threats

Self Cite

View full text Add to dashboard Cite

show abstract

“…The scheme was based on a Symmetric Searchable Encryption (SSE) scheme [7], [8], [9] that allows patients of an electronic healthcare system to securely store encrypted versions of their medical data and search directly on them without having to decrypt them first. Even though the scheme offers some kind of secure sharing it is not that flexible and efficient since it does not rely on policies.…”

Section: Related Workmentioning

confidence: 99%

“…The IaaS platform consists of cloud hosts which operate virtual machine guests and communicate through a network. In addition to that, we assume a Platform-as-a-Service (PaaS) provider, like the one described in [8], [12], that is built on top of the IaaS platform and can host multiple outsourced databases. Furthermore, the cloud service provider is responsible for storing the data of users and also providing data access.…”

Section: System Model and Problem Statementmentioning

confidence: 99%

HealthShare: Using Attribute-Based Encryption for Secure Data Sharing between Multiple Clouds

Michalas

Weingarten

2017

2017 IEEE 30th International Symposium on Computer-Based Medical Systems (CBMS)

Self Cite

View full text Add to dashboard Cite

Abstract-In this invited paper, we propose HealthSharea forward-looking approach for secure ehealth data sharing between multiple organizations that are hosting patients' data in different clouds. The proposed protocol is based on a Revocable Key-Policy Attribute-Based Encryption scheme and allows users to share encrypted health records based on a policy that has been defined by the data owner (i.e. patient, a member of the hospital, etc). Furthermore, access to a malicious or compromised user/organization can be easily revoked without the need to generate fresh encryption keys.

show abstract

“…In addition to that, we assume a PaaS provider is built on top of the IaaS platform and can host multiple outsourced databases. Furthermore, the PaaS provider offers an API through which a developer can built a privacyprivacy preserving application that offers searchable encryption functionality like the one presented in [16] and [17].…”

Section: Cloud Service Provider (Csp)mentioning

confidence: 99%