This document identifies the security requirements that will drive the implementation of the EUBra-BIGSEA global security solution addressing: (i) the provisioning of Authentication, Authorization and Accounting (AAA), (ii) the assurance of the security properties of the cloud and Big Data services, and (iii) the protection of the data privacy.
The 30 high level requirements will ensure the desgin and implementaiton of a secure environment for the infrastructure, for the application developers and even for the end users of the applications running inside the framework. The defined solution includes two distinct AAA blocks:
- A EUBra-BIGSEA Infrastructure AAA Service, to provide the AAA functionalities to infrastructure managers and application developers/providers;
- A EUBra-BIGSEA Applications AAAaaS, to serve the end users of applications hosted in the EUBra-BIGSEA.
The document also revise the state of the art and includes the security assessment of key infrastructure components and the development of solutions for the issues uncovered, the benchmarking and improvement of intrusion detection systems, and the proposal of metrics to characterize the trustworthiness of the system, together with the definition of two distinct privacy control barriers, responsible of protecting the anonymity of both the raw data to be used and of the data resulting from the predictive and descriptive models built.