• English (UK)
  • Italiano (IT)
cerict
  • Home
  • CeRICT
    • About US
    • The Mission
    • Competences Area
    • Contacts
    • Benevento (Legal Head Office)
    • Benevento (Optoelectronics&Photonics Center)
    • Naples (Headquarters)
  • IEEE EVENTS
  • Partners

CLOUD SECURITY ALLIANCE (EUROPE) LBG

  • SPECS

    • SPECS
    • Abstract
    • Partner

    SPECS

     Project

     SPECS

    Title Secure Provisioning of Cloud Services based on SLA management Acronym SPECS
    Project ID 610795 Call FP7-ICT-2013-10
    Programme FP7 Rdg CNECT
    Activity Trustworthy ICT 
    Links
    • http://www.specs-project.eu/
    • http://cordis.europa.eu/project/rcn/110457_en.html

    Abstract

    Abstract
    The Cloud offers attractive options to migrate corporate applications without the corporate security manager needing to manage or secure any physical resources. While this “ease” is appealing, several security issue arise: * Can the validity of corporate legal compliance regulations still be ensured over remote data storage? * With security sensitive data residing remotely with the Cloud Service Provider (CSP), can access of unauthorized CSP personnel to your data be restricted? * How does one assess a CSP’s ability to meet the corporate security requirements and the security trades-offs offered by different CSPs? * Can one monitor and enforce the agreed Cloud security levels with the CSP? No comprehensive and easily usable solutions exist for these issues. SPECS solves this problem, offering: * Mechanisms to specify Cloud security requirements and assess the standalone and comparative security features offered by CSPs. * Ability to integrate desired corporate security services (eg. credential and access management) into Cloud services. * Systematic approaches to negotiate, monitor and enforce the security parameters specified in Service Level Agreements (SLA). * Approaches to develop and deploy security services that are “Cloud SLA-aware”, implemented as an open-source Platform-as-a-Service (PaaS). Providing such comprehensible and enforceable security assurance by CSP’s is a critical factor to deploy trustworthy Cloud ecosystems. Targeting ICT-2013.1.5 “Trustworthy ICT”, SPECS will develop and implement an open source framework to offer Security-as-a-Service, by relying on the notion of security parameters specified in Service Level Agreements (SLA) and providing the techniques to systematically manage their life-cycle. The SPECS framework addresses both CSP’s and users to provide techniques and tools for: a) Enabling user-centric negotiation of security parameters in Cloud SLA, along with a trade-off evaluation process among users and CSPs, in order to compose Cloud services fulfilling a minimum required security level. b) Monitoring in real-time the fulfillment of SLAs agreed with CSPs, notifying both users and CSPs, when a SLAs not being fulfilled. c) Enforcing agreed SLA in order to keep a sustained Quality of Security (QoSec) that fulfills the specified security parameters. SPECS’ enforcement framework will also “react and adapt” in real-time to fluctuations in the QoSec by advising/applying the requisite countermeasures. The proposed framework will be based on an open-source core, and offer simple interfaces to motivate its adoption. It will offer a set of reusable PaaS components for service developers to enable them to integrate SPECS’ SLA-oriented security mechanisms into existing Cloud services. Using real case studies SPECS will demonstrate that the contributed framework and architecture can be integrated “as-a-Service” into real life Cloud environments, with a particular emphasis on small/medium/federated CSP and end users.

    Partner

    Partner
    • Centro Regionale Information Communication Technology scrl(986394262)-COORDINATOR
    • TECHNISCHE UNIVERSITAET DARMSTADT(999986581)-BENEFICIARY
    • INSTITUTUL E-AUSTRIA TIMISOARA(999624674)-BENEFICIARY
    • CLOUD SECURITY ALLIANCE (EUROPE) LBG(957576241)-BENEFICIARY
    • INSTITUTO CIENTIFICO DE INNOVACION Y TECNOLOGIAS APLICADAS DE NAVARRA(958454091)-BENEFICIARY
    • XLAB RAZVOJ PROGRAMSKE OPREME IN SVETOVANJE DOO(999773375)-BENEFICIARY
    • EMC INFORMATION SYSTEMS INTERNATIONAL(959978349)-BENEFICIARY

European Partners

  • PARTNERS LIST
  • AIMES GRID SERVICES COMMUNITY INTEREST COMPANY
  • AGENCIA ESTATAL CONSEJO SUPERIOR DE INVESTIGACIONES CIENTIFICAS
  • CA TECHNOLOGIES DEVELOPMENT SPAIN SA
  • CONSIGLIO NAZIONALE DELLE RICERCHE (CNR)
  • CLOUD SECURITY ALLIANCE (EUROPE) LBG
  • DICO ROMANIA SRL
  • EATON INDUSTRIES (FRANCE) SAS
  • ECOLE POLYTECHNIQUE FEDERALE DE LAUSANNE
  • EMC INFORMATION SYSTEMS INTERNATIONAL
  • FUNDACION PUBLICA ANDALUZA PARA LAGESTION DE LA INVESTIGACION EN SALUD DE SEVILLA
  • FUNDACION TECNALIA RESEARCH & INNOVATION
  • INSTITUTO CIENTIFICO DE INNOVACION Y TECNOLOGIAS APLICADAS DE NAVARRA
  • INSTITUTUL E-AUSTRIA TIMISOARA
  • PHILIPS MEDICAL SYSTEMS NEDERLAND BV
  • POLITECNICO DI MILANO
  • PRO DESIGN Electronic GmbH
  • PROYECCION EUROPLAN XXI S.L.
  • SVEUCILISTE U ZAGREBU FAKULTET ELEKTROTEHNIKE I RACUNARSTVA
  • TECHNISCHE UNIVERSITAET DARMSTADT
  • THALES COMMUNICATIONS & SECURITY SAS
  • TTY-SAATIO
  • TYDOCK PHARMA S.r.l.
  • LUFTHANSA SYSTEMS AG
  • OPTOSMART SRL
  • REGLASS SRL
  • MOLECULAR DISCOVERY LTD
  • MONTIMAGE EURL
  • UNIVERSITA DEGLI STUDI DI MODENA E REGGIO EMILIA
  • UNIVERSITAT POLITECNICA DE VALENCIA
  • UNIVERSITY OF BATH
  • XLAB RAZVOJ PROGRAMSKE OPREME IN SVETOVANJE DOO

Contacts

Benevento
Via Traiano, "Palazzo ex Poste" - 82100 (Legal Head Office).
T: (+39) 0824 305520/44, F: (+39) 0824 1711006
Optoelectronics&Photonics Center
C.da Piano Cappelle 
Napoli
Complesso Universitario di Monte Sant’Angelo - Fabbricato 8b, Via Cintia - 80126 
T: (+39) 081 679951/55, E: segreteria@cerict.it
 E: cerict@pec.it
P. IVA: 01346480625
 

Sede Legale Benevento

Sede BN

Sede Operativa Napoli

Sede NA


© 2023 cerict - Partita IVA 01346480625

  • Privacy
cerict
  • Home
  • CeRICT
    • About US
    • The Mission
    • Competences Area
    • Contacts
    • Benevento (Legal Head Office)
    • Benevento (Optoelectronics&Photonics Center)
    • Naples (Headquarters)
  • IEEE EVENTS
  • Partners
  • English (UK)
  • Italiano (IT)
Go Top
  • Follow via Facebook
  • Follow via Youtube
  • Follow via LinkedIn