Cyber: Ensuring Secure Cloud Services using Policy-Based Approaches

Abstract

Existing cloud services often provide minimal security guarantees: on the currently stored data, on the access patterns over that data, and on the persistence of deleted data. While the security of cloud storage has been the focus of numerous recent research efforts, this proposal seeks to combine and advance upon these efforts using a richer set of security guarantees than has been achieved previously. Objective: The PI will scientifically advance specific theoretic work for ensuring security for cloud services, where open problems of feasibility and performance remain unanswered. Approach: To achieve this goal and advance science, this research will define novel security models, develop new data structures that satisfy those models, implement software prototypes for a variety of cloud applications, and provide a well-defined set of security policies. The research tasks are divided into three thrusts, theoretic advances, policy support, and prototype system building Overall Merit and ONR Mission/Relevance: Cloud services are becoming more common for government agencies, including the DoD and the Navy. Securing these services against attacks on currently stored as well as previously stored data should be a priority. Scientifically, this research seeks to advance specific theoretic work in the proposed areas where open problems of feasibility and performance remain unanswered, providing guidance to the Navy for deploying a more secure cloud services

Document Details

Document Type

DoD Grant Award

Publication Date

Aug 12, 2016

Source ID

N000141512228

Entities

Tags