Abstract
The TRESOR (Trusted Ecosystem for Standardized and Open cloud-based Resources http://www.cloud-tresor.de/) project enables cloud computing solutions for the German health sector. This sector deals with sensitive medical information and is in general not suitable for current cloud-based solutions, which are lacking appropriate privacy and security features. The project evaluates and proposes new architectural components to address these shortcomings. These will be combined into a secure and trustworthy ecosystem that will enable the health industry and other sectors to take advantage of cloud computing. The architecture consists of components, such as a marketplace, a broker, a proxy and a PaaS-platform. TRESOR addresses privacy and data protection issues and aims at providing a standardized solution with reduced lock-in effects that can also be used in other domains. In this paper the specific tasks and the architecture of these components are presented, important challenges of the TRESOR project are highlighted and preliminary results, such as a secure transfer protocol, and policy integration are shown.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
Notes
References
Umu xacml editor (2013). URL http://umu-xacmleditor.sourceforge.net/
Ws02 identity server (2013). URL http://wso2.com/products/identityserver/
Ardagna, C.A., Cremonini, M., di Vimercati, S.D.C., Samarati, P.: Access control in location based services. Privacy in Location-Based Applications LNCS 5599, 106–126 (2009)
Axiomatics: Axiomatics Language for Authorization (ALFA) (2012). URL http://www.axiomatics.com/axiomatics-alfa-plugin-for-eclipse.html
Bundesäztekammer: Berufsordnung für die in Deutschland tätigen Ärztinnen und Ärzte - §10 Abs. 3. http://www.bundesaerztekammer.de/page.asp?his=1.100.1143 (2011)
Fielding, R.T.: Architectural Styles and the Design of Network-based Software Architectures. Doctoral dissertation, University of California, Irvine (2000). 2000
Geman Federal Ministry of Justice: Verordnung über den Schutz vor Schäden durch Röntgenstrahlen, § 28 Aufzeichnungspflichten, Röntgenpass. http://www.gesetze-iminternet.de/r_v_1987/__28.html (2011)
German Federal Ministry of Justice: StGB § 203 Verletzung von Privatgeheimnissen. http://www.gesetze-im-internet.de/stgb/__203.html (2013). German
Graf, T., Zickau, S., Küpper, A.: Enabling location-based services on stationary devices using smartphone capabilities (2013)
Lockhart, H., Parducci, B., Rissanen, E.: Oasis xacmlv3 administration and delegation profile (2010)
Merz, F.:Wachstumsmotor Gesundheit: Die Zukunft unseres Gesundheitswesens. Carl Hanser Verlag, München (2008)
Microsoft, Inc.: Access & Information Protection. http://www.microsoft.com/enus/server-cloud/windows-server/identity-access.aspx (2013)
Neuman, C., Yu, T., Hartman, S., Raeburn, K.: The Kerberos Network Authentication Service (V5). RFC 4120 (Proposed Standard) (2005). URL http://www.ietf.org/rfc/rfc4120.txt. Updated by RFCs 4537, 5021, 5896, 6111, 6112, 6113, 6649
OASIS (Organization for the Advancement of Structured Information Standards): OASIS eXtensible Access Control Markup Language (XACML). https://www.oasis-open.org/committees/xacml (2013)
OGC (Open Geospatial Consortium): Geospatial eXtensible Access Control Markup Language (GeoXACML) (2011). URL http://www.opengeospatial.org/standards/geoxacml
Repschläger, J., Zarnekow, R., Wind, S., Klaus, T.: Cloud Requirement Framework: Requirements and Evaluation Criteria to adopt Cloud Solutions. In: Proceedings of the 20th European Conference on Information Systems (2012)
Slawik, M.: The trusted cloud transfer protocol. In: Proceedings of the 5th Intl. Conference on Cloud Computing Technology and Science (CloudCom 2013), pp. 203–208. IEEE, Bristol, UK (2013)
Thatmann, D., Slawik, M., Zickau, S., Küpper, A.: Towards a Federated Cloud Ecosystem: Enabling Managed Cloud Service Consumption, accepted. In: Proceedings of the 9th International Conference on Economics of Grids, Clouds, Systems, and Services, GECON 2012. Springer-Verlag Berlin Heidelberg, Berlin, Germany (2012)
The Eclipse Foundation: Eclipse Modeling Framework Project (EMF). http://www.eclipse.org/modeling/emf/ (2013)
Acknowledgments
The work presented in this paper is performed in the context of the TRESOR project. TRESOR is funded by the German Federal Ministry of Economics and Technology (BMWi) as part of the Trusted CloudFootnote 1 technology program.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2014 Springer International Publishing Switzerland
About this chapter
Cite this chapter
Zickau, S., Slawik, M., Thatmann, D., Uhlig, S., Denisow, I., Küpper, A. (2014). TRESOR – Towards the Realization of a Trusted Cloud Ecosystem. In: Krcmar, H., Reussner, R., Rumpe, B. (eds) Trusted Cloud Computing. Springer, Cham. https://doi.org/10.1007/978-3-319-12718-7_9
Download citation
DOI: https://doi.org/10.1007/978-3-319-12718-7_9
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-12717-0
Online ISBN: 978-3-319-12718-7
eBook Packages: Computer ScienceComputer Science (R0)