TTP: Medium: A Campus Pilot For A Privacy-Enabled Cloud Storage, Search, and Collaboration Portal for Education

TTP：Medium：支持隐私的云存储、搜索和协作教育门户的校园试点

基本信息

批准号：
1562376
负责人：
Radu Sion
金额：
$ 99.98万
依托单位：
Private Machines Inc.
依托单位国家：
美国
项目类别：
Standard Grant
财政年份：
2016
资助国家：
美国
起止时间：
2016-09-01 至 2019-08-31
项目状态：
已结题

来源：
https://www.nsf.gov/awardsearch/showAward?AWD_ID=1562376&HistoricalAwards=false
关键词：
TTP Medium Campus Pilot Privacy

项目摘要

As higher education institutions consider moving services to the cloud to save costs and improve collaboration, significant challenges to successful large-scale adoption still exist. Institutions are unwilling to risk cloud deployment because provable technological defenses have thus far been lacking. Control over sensitive data is relinquished without the institution's knowledge, liability is shifted and data breach risks are significantly increased. Further, regulatory-sensitive data has become an increasingly attractive target. Recent history shows one major breach every few weeks, with an alarming increase in frequency. This project directly addresses this significant challenge by transitioning to practice -- through an educational campus pilot -- searchable cloud storage and collaboration tools with full in-cloud privacy, at-runtime security and no shift in liability for educators and students. The pilot provides secure cloud storage to 24,500 students and 2,500 educators. It constitutes a testbed for deploying secure protocols in a live environment via the participation of researchers and students in its operation. Extensive data dissemination for academic research purposes is an integral part of the pilot. Collected data points serve as significant knowledge repositories not only in the security community but also in the storage and cloud research communities. The project will result in the creation of a significant number of trust and security-related information technology jobs which must remain stateside to maintain the economic and political security of the United States. The project trains students and contributes to the creation of a skilled cyber-security domestic workforce available to fulfill our nation's needs. The project provides new course material and involves underrepresented groups, including at least one female PhD student.The technical underpinnings of the work rely on new mechanisms that ensure data is strongly encrypted before leaving trusted client premises while allowing users to still securely collaborate, query, share, synchronize, search, backup etc. Contrary to conventional wisdom, the project constructs a secure design that is also truly practical, but would not have been feasible with a server-centric approach in which search operations are performed server-side on encrypted data and are computationally expensive and necessarily limited in expressiveness. Instead, the pilot is based on an efficient design in which operations are distributed to client-side logic in a scalable, efficient manner, operating orders of magnitude faster than the equivalent server code on encrypted data. To further optimize processing, the system enables clients to leverage each other's work (such as indexing) in a distributed secure manner, through cloud-mediated conduits and mechanisms. Overall, the system ensures the cloud cannot ever access user data or see user search queries. Ultimately, clients receive all cloud benefits while ensuring full regulatory compliance. Even if the cloud provider is breached, data is fully protected.

尽管高等教育机构考虑将服务转移到云端以节省成本并改善协作，但成功大规模采用的重大挑战仍然存在。机构不愿意冒险部署云，因为迄今为止还缺乏可证明的技术防御。在机构不知情的情况下放弃对敏感数据的控制，责任转移，数据泄露风险显着增加。此外，监管敏感数据已成为越来越有吸引力的目标。最近的历史表明，每隔几周就会发生一次重大泄露，而且频率正在以惊人的速度增加。该项目通过教育校园试点过渡到实践，直接解决这一重大挑战，可搜索的云存储和协作工具具有完全的云内隐私、运行时安全性，并且教育工作者和学生的责任不会转移。该试点项目为 24,500 名学生和 2,500 名教育工作者提供安全的云存储。它构成了一个测试平台，通过研究人员和学生参与其操作，在实时环境中部署安全协议。用于学术研究目的的广泛数据传播是该试点的一个组成部分。收集的数据点不仅在安全社区而且在存储和云研究社区中充当重要的知识存储库。该项目将创造大量与信任和安全相关的信息技术工作岗位，这些工作岗位必须留在美国境内，以维护美国的经济和政治安全。该项目培训学生，并有助于培养一支熟练的网络安全国内劳动力，以满足我们国家的需求。该项目提供了新的课程材料，并涉及代表性不足的群体，其中至少包括一名女博士生。这项工作的技术基础依赖于新的机制，确保数据在离开受信任的客户端之前进行高度加密，同时允许用户仍然安全地协作、查询、共享、同步、搜索、备份等。与传统观点相反，该项目构建了一个真正实用的安全设计，但对于以服务器为中心的方法（其中搜索操作在服务器端对加密数据执行）来说是不可行的并且计算成本昂贵并且必然受到限制在表现力方面。相反，该试点基于高效的设计，其中操作以可扩展、高效的方式分发到客户端逻辑，其操作速度比加密数据上的等效服务器代码快几个数量级。为了进一步优化处理，该系统使客户能够通过云介导的管道和机制，以分布式安全方式利用彼此的工作（例如索引）。总体而言，该系统确保云无法访问用户数据或查看用户搜索查询。最终，客户可以获得所有云优势，同时确保完全合规。即使云提供商遭到破坏，数据也会得到充分保护。

项目成果

期刊论文数量（0）

专著数量（0）

科研奖励数量（0）

会议论文数量（0）

专利数量（0）

数据更新时间：{{ journalArticles.updateTime }}

DOI：
{{ item.doi }}
发表时间：
{{ item.publish_year }}
期刊：
{{ item.journal_name }}
影响因子：
{{ item.factor }}
作者：
{{ item.authors }}
通讯作者：
{{ item.author }}

数据更新时间：{{ journalArticles.updateTime }}

作者：
{{ item.author }}

数据更新时间：{{ monograph.updateTime }}

作者：
{{ item.author }}

数据更新时间：{{ sciAawards.updateTime }}

作者：
{{ item.author }}

数据更新时间：{{ conferencePapers.updateTime }}

作者：
{{ item.author }}

数据更新时间：{{ patent.updateTime }}

Radu Sion其他文献

INVISILINE : Invisible Plausibly-Deniable Storage

INVISILINE ：隐形的可否认的存储

DOI：
发表时间：
期刊：
影响因子：
0
作者：
Sandeep Kiran Pinjala;Bogdan Carbunar;Anrin Chakraborti;Radu Sion
通讯作者：
Radu Sion

Sensornet

传感器网

DOI：
发表时间：
2009
期刊：
Encyclopedia of Database Systems
影响因子：
0
作者：
Rodney Topor;Kenneth Salem;Amarnath Gupta;K. Goda;John F. Gehrke;N. Palmer;Mohamed Sharaf;Alexandros Labrinidis;J. Roddick;Ariel Fuxman;Renée J. Miller;Wang;Anastasios Kementsietsidis;Philippe Bonnet;D. Shasha;Ronald Peikert;Bertram Ludäscher;S. Bowers;T. McPhillips;Harald Naumann;K. Voruganti;J. Domingo;Ben Carterette;Panagiotis G. Ipeirotis;Marcelo Arenas;Y. Manolopoulos;Y. Theodoridis;V. Tsotras;B. Carminati;Jan Jurjens;Eduardo B. Fernandez;Murat Kantarcıoǧlu;Jaideep Vaidya;Indrakshi Ray;Athena Vakali;Cristina Sirangelo;E. Pitoura;Himanshu Gupta;Surajit Chaudhuri;G. Weikum;Ulf Leser;David W. Embley;Fausto Giunchiglia;P. Shvaiko;Mikalai Yatskevich;Edward Y. Chang;Christine Parent;S. Spaccapietra;E. Zimányi;G. Anadiotis;S. Kotoulas;Ronny Siebes;Grigoris Antoniou;D. Plexousakis;J. Bailey;François Bry;Tim Furche;Sebastian Schaffert;David Martin;Gregory D. Speegle;Krithi Ramamritham;P. Chrysanthis;Kai;Stéphane Bressan;S. Abiteboul;D. Suciu;G. Dobbie;Tok Wang Ling;Sugato Basu;Ramesh Govindan;Michael H. Böhlen;C. S. Jensen;Jianyong Wang;K. Vidyasankar;A. Chan;Serge Mankovski;S. Elnikety;P. Valduriez;Yannis Velegrakis;Mario A. Nascimento;Michael Huggett;Andrew U. Frank;Yanchun Zhang;Guandong Xu;R. Snodgrass;Alan Fekete;Marcus Herzog;Konstantinos Morfonios;Y. Ioannidis;E. Wohlstadter;M. Matera;F. Schwagereit;Steffen Staab;Keir Fraser;Jingren Zhou;M. Mokbel;Walid G. Aref;Mirella M. Moro;Markus Schneider;Panos Kalnis;Gabriel Ghinita;Michael F. Goodchild;Shashi Shekhar;James Kang;Vijayaprasath Gandhi;Nikos Mamoulis;Betsy George;Michel Scholl;Agnès Voisard;Ralf Hartmut Güting;Yufei Tao;Dimitris Papadias;Peter Revesz;G. Kollios;E. Frentzos;Apostolos N. Papadopoulos;Bernhard Thalheim;Jovan Pehcevski;Benjamin Piwowarski;S. Theodoridis;Konstantinos Koutroumbas;George Karabatis;Don Chamberlin;Philip A. Bernstein;Michael H. Böhlen;J. Gamper;Ping Li;Kazimierz Subieta;S. Harizopoulos;Ethan Zhang;Yi Zhang;Theodore Johnson;Hans;S. Fienberg;Jiashun Jin;Radu Sion;C. Paice;Nikos Hardavellas;Ippokratis Pandis;Edie M. Rasmussen;Hiroshi Yoshida;G. Graefe;Bernd Reiner;Karl Hahn;K. Wada;T. Risch;Jiawei Han;Bolin Ding;Lukasz Golab;Michael Stonebraker;Bibudh Lahiri;Srikanta Tirthapura;Erik Vee;Yanif Ahmad;U. Çetintemel;Mitch Cherniack;S. Zdonik;Mariano P. Consens;M. Lalmas;R. Baeza;D. Hiemstra;Peer Krögerand;Arthur Zimek;Nick Craswell;Carson Kai;Maxime Crochemore;Thierry Lecroq;Arie Shoshani;Jimmy Lin;Hwanjo Yu;David B. Lomet;H. Hinterberger;Ninghui Li;Phillip B. Gibbons;Mouna Kacimi;Thomas Neumann
通讯作者：
Thomas Neumann

Data Gathering

数据收集

DOI：
10.1007/978-0-387-39940-9_2355
发表时间：
2009
期刊：
Encyclopedia of Database Systems
影响因子：
0
作者：
T. Risch;Turkmen Canli;A. Khokhar;Jun Yang;Kamesh Munagala;Adam Silberstein;P. Chrysanthis;E. Pitoura;Venkatesh Ganti;Amol Deshpande;H. Do;James Caverlee;Ninghui Li;L. Gruenwald;Lucian Popa;A. Kansal;Feng Zhao;A. Poulovassilis;M. Herzog;Il;Jiawei Han;Daniel J. Abadi;David P. Hansen;Christine O’Keefe;Theodore Johnson;Amarnath Gupta;C. Batini;K. Sattler;M. Scannapieco;J. Domingo;Rui Zhang;B. Kemme;Qing Zhang;Xuemin Lin;Luc Bouganim;Philip B. Gibbons;Lukasz Golab;Yanif Ahmad;U. Çetintemel;S. Prabhakar;R. Cheng;H. Hinterberger;M. Golfarelli;J. Eder;Karl Wiggisser;Panos Vassiliadis;C. Blanco;E. Fernández;Juan Trujillo;M. Piattini;Shawn N. Murphy;E. Chen;Changqing Li;Xue Li;M. Mattoso;M. Gyssens;J. Mylopoulos;S. Madden;K. Goda;Pat Helland;C. Amza;L. Bertossi;Jean;J. Henrard;V. Englebert;D. Roland;Jean;Elena Ferrari;Biswanath Panda;J. Gehrke;Mirek Riedewald;Mikael Berndtsson;J. Mellin;Surajit Chaudhuri;Vivek R. Narasayya;G. Weikum;Nicolas Bruno;Grigoris Karvounarakis;A. Gokhale;E. Cohen;T. Lin;Alin Dobra;Timothy Roscoe;T. Lin;R. Kaushik;K. Chang;M. Moro;V. Tsotras;Daniel A. Keim;Peter Bak;Matthias Schäfer;M. Ester;A. Borgida;A. Maurino;P. Mitra;Cristina Sirangelo;R.W. Moore;G. Janée;L. Floriani;P. Magillo;V. Srinivasan;Seungwon Yang;Edward A. Fox;Radu Sion;B. Carminati;T. Pedersen;H. Shen;Chris H. Q. Ding;E. Clementini;A. Blackwell;M. Costabile;K. Wada;K. Järvelin;Jaana Kekäläinen;S. Dustdar;Christian Platzer;Bernd J. Krämer;Minos N. Garofalakis;Gail;P. Boncz;Carpendale Sheelagh;M. Weske;Kian;S. Elnikety;W. Tok;Wojciech Galuba;Sarunas Girdzijauskas;Stéphane Bressan;Panos Kalnis;G. Amati;E. Munson;Ying‐tong Zhao;G. Karypis;Frank Wm. Tompa;Vassilis Plachouras;Ben He;Ethan V. Munson;Mary Laarsgard;D. Cook;M. Matera
通讯作者：
M. Matera