Secure and Privacy-Aware Data Dissemination for Cloud-Based Applications

TL;DR

This paper introduces a secure, privacy-aware data dissemination platform leveraging trusted hardware to control data access levels without requiring users to handle encryption keys, suitable for IoT and smart grid applications.

Contribution

It presents a novel data dissemination system that ensures security and privacy in untrusted cloud environments using trusted hardware like Intel SGX, without user-managed encryption keys.

Findings

Practical for medium-scale systems with small data volumes

Supports multiple privacy levels for data streams

Effective in IoT and smart grid scenarios

Abstract

In this paper we propose a data dissemination platform that supports data security and different privacy levels even when the platform and the data are hosted by untrusted infrastructures. The proposed system aims at enabling an application ecosystem that uses off-the-shelf trusted platforms (in this case, Intel SGX), so that users may allow or disallow third parties to access the live data stream with a specific sensitivity-level. Moreover, this approach does not require users to manage the encryption keys directly. Our experiments show that such an approach is indeed practical for medium scale systems, where participants disseminate small volumes of data at a time, such as in smart grids and IoT environments.