Un langage de composition des techniques de sécurité pour préserver la vie privée dans le nuage

Ronan-Alexandre Cherrueau 1, 2
2 ASCOLA - Aspect and composition languages
Inria Rennes – Bretagne Atlantique , Département informatique - EMN, LINA - Laboratoire d'Informatique de Nantes Atlantique
Abstract : A cloud service can use security techniques to ensure information privacy. These techniques protect privacy by converting the client’s personal data into unintelligible text. But they can also cause the loss of some functionalities of the service. For instance, a symmetric-key cipher protects privacy by converting readable personal data into unreadable one. However, this causes the loss of computational functionalities on this data.This thesis claims that a cloud service has to compose security techniques to ensure information privacy without the loss of functionalities. This claim is based on the study of the composition of three techniques: symmetric cipher, vertical data fragmentation and client-side computation. This study shows that the composition makes the service privacy preserving, but makes its formulation overwhelming. In response, the thesis offers a new language for the writing of cloud services that enforces information privacy using the composition of security techniques. This language comes with a set of algebraic laws to systematically transform a local service without protection into its cloud equivalent protected by composition. An Idris implementation harnesses the Idris expressive type system to ensure the correct composition of security techniques. Furthermore, an encoding translates the language intoProVerif, a model checker for automated reasoning about the security properties found in cryptographic protocols. This translation checks that the service preserves the privacy of its client.
Document type :
Theses
Complete list of metadatas

https://tel.archives-ouvertes.fr/tel-01416166
Contributor : Abes Star <>
Submitted on : Wednesday, December 14, 2016 - 10:16:06 AM
Last modification on : Sunday, January 27, 2019 - 1:17:07 AM
Long-term archiving on : Wednesday, March 15, 2017 - 2:10:17 PM

File

Cherrueau_RA_11_2016.pdf
Version validated by the jury (STAR)

Identifiers

  • HAL Id : tel-01416166, version 1

Citation

Ronan-Alexandre Cherrueau. Un langage de composition des techniques de sécurité pour préserver la vie privée dans le nuage. Cryptographie et sécurité [cs.CR]. Ecole des Mines de Nantes, 2016. Français. ⟨NNT : 2016EMNA0233⟩. ⟨tel-01416166⟩

Share

Metrics

Record views

1520

Files downloads

701