Designing for data confidentiality and resilience (Data61 CRP 22)

  • Rudolph, Carsten (Primary Chief Investigator (PCI))
  • Liu, Joseph (Chief Investigator (CI))
  • Steinfeld, Ron (Chief Investigator (CI))
  • Nepal, Surya (Partner Investigator (PI))
  • Rimba, Paul (Partner Investigator (PI))
  • Liu, Dongxi (Partner Investigator (PI))
  • Knight, Katherine, (Project Manager)

Project: Research

Project Description

This project has two main research strands that both contribute to the improvement of security and resilience in advanced infrastructures, such as the Internet of Things (‘IoT’):
1. Protection of Data Confidentiality and Computation on Encrypted Domain on Data Collected by IoT Devices
This part of the project will develop a series of mechanisms that can provide data confidentiality to the data collected by IoT devices and provide computation (e.g. searching or aggregate statistics) on the encrypted domain, with the following requirements:
A) No one including the gateway, the IoT control centre and the database cloud server, except the third party (the “user” of these data), can decrypt the data.
B) The compromise of any IoT device should not affect the security of the whole system.
C) The efficiency should be acceptable, i.e.
◦ In the case of search computations, the server search complexity should be essentially independent of the number of entries in the database.
◦ In the case of aggregate statistical computations, the server computation time per database element should be minimal, and communication complexity should be essentially independent of the number of entries in the database.
Designing for Resilience and Security Automation
In order to improve resilience for ICT-based infrastructures and systems, the second research strand of the project will substantially contribute in the following areas:
A) Development of building blocks and suitable security models for designing resilient systems;
B) Develop methods and tools for a cross-layer view including meta-data and relations
between system components, processes, and physical environment; and
C) Establish a cross-domain development process that uses the right system representation (on different abstraction levels) that enables developers to create consistent views focusing on domain-dependent (e.g. functional) requirements and resilience/security requirements.

This CRP falls under the Data61-University Collaborative Agreement (DUCA) umbrella agreement.
Effective start/end date1/10/1631/12/19