TRUSTINCloudS
TRUSTINCloudS is funded by the France 2030 program managed by the French ANR. It is one of the projects funded within the PEPR Cloud. It involves the following partners: Université Aix-Marseille, Université Toulouse III Paul Sabatier, Université de Lorraine, Institut Mines-Télécom, INRIA, EURECOM and CEA.
Description.
The TRUSTINCloudS project investigates solutions for the major cybersecurity challenges of Cloud environments. The project adapts traditional security mechanisms (e.g. those from PEPR Cyber) to address the specific threats of the different types of Clouds (IaaS, PaaS,...). Indeed, TRUSTINCloudS specifies and implements new methodologies to strengthen Cloud security and to build a sovereign and trusted Cloud. It investigates on the one hand the security of Cloud infrastructures, and on the other hand the security of the outsourced data. The project will carry out scientific actions on these two main axis, with the objective of developing new methods and tools. For validation, proofs of concept will be implemented within the shared infrastructure provided by the SILECS project.
Work packages.
The TRUSTINCloudS project is organized into six work packages (WPs). The first work package (WP0) is about project management. The WP1 is related to risk analysis and threats identification in highly dynamic mutli-clouds infrastructures. It also provides methods for insfrastructure auditing and control. The WP2 investigates solutions for infrastructures protection and in particular carries research on incidents detection, prevention and mitigation. The WP3 identifies risks related to sensitive data management and usability. It evaluates users’ acceptability for a more secure usage of their data. The WP4 specifies a set of privacy enhancing technologies for protecting sensitive data. Finally, the WP5 provides implementations and proof of concepts for the investigated solutions.
Publications.
- 2024
- Mohamed-Amine Ben Haj Salah, Romain Laborde, Abdelmalek Benzekri, Mohamed Ali Kandi, Afonso Ferreira. Identity management in cross-cloud environments: Towards self-sovereign identities using current solutions. Nov 2024, France. ⟨hal-04668399⟩
- Marina Checri, Renaud Sirdey, Aymen Boudguiga, Jean-Paul Bultel. On the practical CPAD security of “exact” and threshold FHE schemes and libraries. Crypto 2024 - 44th Annual International Cryptology Conference, Aug 2024, Santa Barbara, United States. ⟨10.1007/978-3-031-68382-4_1⟩.⟨cea-04706832⟩
- Nathan Monsoro, Célia Martinie, Philippe Palanque, Théo Saubanère. A Systematic Task and Knowledge-Based Process to Tune Cybersecurity Training to User Learning Groups: Application to Email Phishing Attacks. 18th International Symposium on Human Aspects of Information Security and Assurance, IFIP Work Group 11.12, Jul 2024, Skövde, Sweden. ⟨hal-04727127⟩
- Thibault Cholez, Claudia-Lavinia Ignat. Sybil Attack Strikes Again: Denying Content Access in IPFS with a Single Computer. ARES 2024: The 19th International Conference on Availability, Reliability and Security, Jul 2024, Vienna, Austria. pp.1-7, ⟨10.1145/3664476.3664482⟩. ⟨hal-04666290⟩
- Pierre Charreaux, Alexandre Reiffers-Masson, Francoise Sailhan, Sandrine Vaton. Minmax Restless Bandits for Efficient Moving Target Defense. Rendez-vous de la Recherche et de l'Enseignement de la Sécurité des Systèmes d'Information (RESSI), May 2024, Eppe-Sauvage, France. ⟨hal-04564665v2)
- Pierre Charreaux, Alexandre Reiffers-Masson, Francoise Sailhan, Sandrine Vaton. Mélange de ports et d’IP par processus de décision markoviens min-max. AlgoTel 2024 – 26èmes Rencontres Francophones sur les Aspects Algorithmiques des Télécommunications, May 2024, Saint-Briac-sur-Mer, France. ⟨hal-04564677v2⟩
Powered by