Cloud Security

Cloud computing is probably one of the most disruptive changes in the IT industry. One reason is that cloud computing provides scalable IT-resources delivered “as a service”. Another reason is that cloud computing provides ideal availability across platforms and users.

However, while enterprises world-wide want to adopt cloud services to streamline and optimize their IT operations, they are held back by concerns about the security of their data when it is resident in systems or services beyond their control. This has been reaffirmed by many analysts see e.g. the Cloud Security Alliance’s or the Gartner Group’s reports on the matter.

Maybe: Leaving the cloud is not the solution, while the coud advantages provide the competitive edge, data breaches from on-premise it-systems is more and more common.

Secure Multiparty Computation (SMC) provides a solution

SMC is a distributed it-infrastructure that fundamentally changes the cloud security problem. A SMC system consists of two or more servers (or cloud instances), in a way such that none of the individual servers can control nor access the data stored or computed in the SMC system. Hereby, the fundamental problem, of whom to trust, is greatly simplified by no single point of trust. In other words, a SMC system, based on cloud instances from independent cloud service providers, do not rely on trust in the individual cloud service providers.

Researchers and practioners around the world, constantly improve the performance of this ideal infrastructure. The cryptography experts behind Partisia are at the forefront of this development, both in terms of developing the basic protocols and practical applications as well as in constructing commercial viable solutions.

The partisia solutions

The partisia SMC solutions may be divided into the following two groups:

  • Delegated computing, which focuses primarily on handling cloud security from the point of view of an individual person or organization.
  • Delegated trust, which is also about using SMC to construct a trustee – a trustworthy third party.

In either case, handling cloud security is an integrated part of the SMC cloud solutions.

Sepior Key Management is a prime example of ”delegated computing”. Sepior, uses SMC to create a pure cloud based solution for one of the most critical component in cloud security – generating and handling encryption keys, also called ”key management”. Sepior Key Management ensures an organization central control over encryption keys while making them easily accessible across platforms and users. Read more >>

Partisia’s auctions and statistical solutions are prime examples of ”delegated trust”. The SMC based auctions simply replaces the auctioneer by a distributed SMC system. Now the servers, which constitute the SMC system, is not just distributed across independent cloud service providers (to handle cloud security), the control of the different servers are also distributed among independent person or organizations. Hereby, the SMC system makes up ”a trustee function” that do not rely on any individual persons or organizations. Read more >>