more on sirris.be
back to overview
End-to-End Security

Privacy and Confidentiality

End-to-End Security

Question

How to communicate a message between two parties so that its confidentiality is protected accross all components in the cloud communication channel?

Context

In a cloud environment, data passes through multiple communication channels and is stored in different layers that might be physically dispersed and controlled by different entities. Furthermore, cloud providers’ terms of service are often such that they are labelled as honest-but-curious in a threat model, which is a problem in situations where elevated security guarantees are needed for data in transit and at rest.

Solution

The cryptographic encryption should be used to secure the data exchanged between different entities in the network, both in transit and at rest.

References

Enhancing End-to-End Cloud Security - www.intel.co.uk
Effective end-to-end security - apac.trendmicro.com
Configuring End-to-End Encryption  in AWS - aws.amazon.com

Privacy and Confidentiality Navigation

End-to-end Security

End-to-end Security
Data Anonymisation

Data Anonymisation
Computation on Encrypted Data

Computation on Encrypted Data
Processing Purpose Control

Processing Purpose Control