CLARUS - A framework for user centred privacy and security in the cloud

Project start: 
Wednesday, 31 December, 2014
Project end: 
Sunday, 31 December, 2017

The Clarus project provides innovation in security-enabling techniques, attack-tolerant systems and in new architectures for secure delivery in the cloud. Its Privacy-preserving mechanisms support data anonymization, data coarsening and splitting, data encryption and searchable encryption.

The CLARUS security-by-design approach unleashes new market opportunities by making cloud services more transparent, standardised, auditable and controllable.

Who is the service/solution designed for?: 

Information security professionals, and especially security managers can implement privacy-by-design, which ensures users of cloud services are in the driving seat when it comes to controlling their data, such as healthcare IT teams and geospatial communities.

Open source developers, tech integrators and cloud service providers can support the CLARUS proxy solution and potentially new, secure-by-design services to their customers as the market moves closer towards security-as-a-service. CLARUS can play a key role in not only moving critical applications to the cloud but also in enabling migration from a private cloud service to a pubic one, thus increasing business benefits.

How will your solution/service benefit the end-user? 

Most security mechanisms are commonly located within the cloud platform. This makes the cloud an impractical solution for those customers whose data is considered sensitive and therefore critical, or for organisations that need to comply with specific regulations on data handling.

Cloud customers also need to be assured that no intruder (within or outside an organisation) can hack the cloud and/or impersonate them, and that no denial of service will occur.

With CLARUS, cloud customers no longer need “blind trust” in their cloud service provider(s) when outsourcing their data to the cloud.

CLARUS enhances trust in cloud services through its secure and attack tolerant framework for the storing and processing of data outsourced to the cloud. This allows end users to monitor, audit and control the stored data without impairing the functionality (including the functionality provided by high-level services such as data storage, management, retrieval, transformation, etc.) and cost-saving benefits of cloud services.

The attack-tolerant framework is based on a variety of security mechanisms controlled by cloud users without imparting functionalities provided by high-level services, such as data storage, management, retrieval, transformation, etc.) and without reducing the benefits associated with clouds, such as cost savings, ubiquitous access. 

How can the solution/service help you become more efficient, more secure, faster or cost-effective?: 

CLARUS benefits are clearly demonstrated for geospatial data and digital health and can be extended to other uses with tight security, privacy and regulatory requirements.

Hospital IT teams can move to the cloud safely knowing that sensitive data is secure and compliant with legal regulations. Public and private organisations operating with geodata can be confident of secure data publication and processing without compromising privacy and control over data.

CLARUS also supports the free flow of data as a necessary pre-condition for attracting data business under Digital Single Market Action #14, where the removal of data localisation restrictions is expected to boost cloud service development and uptake with significant economic benefits.

CLARUS helps break down barriers to sharing digital spatial data by offering a high degree of legal and technical interoperability. By facilitating access to geospatial information for re-use, CLARUS will also contribute to the goals of the INSPIRE Directive in terms of addressing legal aspects of data sharing and technical access and interoperability issues for web-based services and spatial data interoperability.