(Français) Projet TRUSTINCloudS

Cybersecurity of Cloud infrastructures

— Preview

Development of solutions for the major cybersecurity challenges specific to Cloud environments, to ensure the confidentiality, integrity and availability of data, applications and services

Aymen Boudguiga

Keywords : Privacy, Integrity, Application, Data, Cloud

Missions
Publications
Partners
Project website

The work carried out in this project aims to adapt traditional security mechanisms (e.g. PEPR Cyber) to the characteristics of the Cloud, in order to deal with the threats specific to different types of Cloud (IaaS, PaaS, …). The main objective of TRUSTINCloudS is to study and develop new methodologies for strengthening Cloud security, and to implement them in platforms in order to build a sovereign and trusted Cloud. It will also raise awareness of the possibilities and limitations of these methodologies. The project is organized in such a way as to work on the one hand on the security of infrastructures, and on the other on the security of the data that these infrastructures host. The project will carry out scientific work on these two major themes, with the aim of developing new methods and tools for securing infrastructures and data. Where relevant, this theoretical work will give rise to prototype implementations for proof-of-concept purposes. We will be using the shared SILECS infrastructure of the PEPR Cloud.

— Missions

— Our researches

The project is organized into 6 work packages. The first work package (WP 0) is dedicated to the management, monitoring and smooth running of the project.

Identification and management of infrastructure cyber risks

Specifies methods for risk analysis, threat identification and auditing of dynamic and collaborative Cloud infrastructures

Protection, detection and response for infrastructure

Proposes security policies for these infrastructures, and in particular studies the protection, detection and incident response mechanisms to be applied. It defines countermeasures to the risks identified in WP 1, to ensure that these do not lead to malicious activities or cyber-attacks.

Identifying and managing cyber risks to data

Identifies the risks associated with data managed in the Cloud. It specifies data management methods, studies their ethical uses and assesses users’ acceptability of them.

Data protection, detection and response

Specifies protection solutions for sensitive data using cryptographic techniques or distributed registers

Experiments

Prototyping and validation through proofs of concept

— Partners

Consortium

CEA, IMT, EURECOM, Inria, Université Toulouse 3 Paul Sabatier, Université d’Aix-Marseille, Université de Lorraine, Université Toulouse Capitole, CNRS

— Research team

29 Permanent staff (not financed by the project)
30 Project-funded staff, including :
20 PhD students
9 post-docs
1 engineer

Our teams in France

— Publications


11 documents

Conference papers9 documents

  • Adda-Akram Bendoukha, Didem Demirag, Nesrine Kaaniche, Aymen Boudguiga, Renaud Sirdey, et al.. Towards privacy-preserving and fairness-aware federated learning framework. Privacy Enhancing Technologies (PETs), Jul 2025, Washinghton, DC, United States. pp.845-865, ⟨10.56553/popets-2025-0044⟩. ⟨hal-04782394⟩
  • Daniele Canavese, Romain Laborde, Abir Laraba, Afonso Ferreira, Abdelmalek Benzekri. Game of Zones: An Automated Intent-Based Network Micro-segmentation Methodology. 38th IEEE/IFIP Network Operations and Management Symposium (NOMS 2025), May 2025, Honolulu, HI, United States. ⟨hal-04948011⟩
  • Antonin Verdier, Romain Laborde, Abir Laraba, Abdelmalek Benzekri. DID U Misbehave? A New Dataset for In-Depth Understanding of Inconspicuous Software. 2024 8th Cyber Security in Networking Conference (CSNet), Dec 2024, Paris, France. pp.205-212, ⟨10.1109/CSNet64211.2024.10851723⟩. ⟨hal-04957256⟩
  • Mohamed-Amine Ben Haj Salah, Romain Laborde, Abdelmalek Benzekri, Mohamed Ali Kandi, Afonso Ferreira. Identity management in cross-cloud environments: Towards self-sovereign identities using current solutions. Proceedings of CRISIS 2024 - The 19th International Conference on Risks and Security of Internet and Systems, Nov 2024, Aix-en-Provence, France. ⟨hal-04668399⟩
  • Marina Checri, Renaud Sirdey, Aymen Boudguiga, Jean-Paul Bultel. On the practical CPA$^D$ security of “exact” and threshold FHE schemes and libraries. Crypto 2024 - 44th Annual International Cryptology Conference, Aug 2024, Santa Barbara, United States. pp.3-33, ⟨10.1007/978-3-031-68382-4_1⟩. ⟨cea-04706832⟩
  • Thibault Cholez, Claudia-Lavinia Ignat. Sybil Attack Strikes Again: Denying Content Access in IPFS with a Single Computer. ARES 2024: The 19th International Conference on Availability, Reliability and Security, Jul 2024, Vienna, Austria. pp.1-7, ⟨10.1145/3664476.3664482⟩. ⟨hal-04666290⟩
  • Nathan Monsoro, Célia Martinie, Philippe Palanque, Théo Saubanère. A Systematic Task and Knowledge-Based Process to Tune Cybersecurity Training to User Learning Groups: Application to Email Phishing Attacks. 18th International Symposium on Human Aspects of Information Security and Assurance, IFIP Work Group 11.12, Jul 2024, Skövde, Sweden. pp.165-179, ⟨10.1007/978-3-031-72559-3_12⟩. ⟨hal-04727127⟩
  • Pierre Charreaux, Alexandre Reiffers-Masson, Francoise Sailhan, Sandrine Vaton. Mélange de ports et d’IP par processus de décision markoviens min-max. AlgoTel 2024 : 26èmes Rencontres Francophones sur les Aspects Algorithmiques des Télécommunications, May 2024, Saint-Briac-sur-Mer, France. ⟨hal-04564677v2⟩
  • Pierre Charreaux, Alexandre Reiffers-Masson, Francoise Sailhan, Sandrine Vaton. Minmax Restless Bandits for Efficient Moving Target Defense. RESSI 2024 : Rendez-vous de la Recherche et de l'Enseignement de la Sécurité des Systèmes d'Information, May 2024, Eppe-Sauvage, France. ⟨hal-04564665v2⟩

Preprints, Working Papers2 documents

  • Afonso Ferreira, Alfredo Goldman. ComplOps Research: Navigating the Digital Regulation Revolution. 2025. ⟨hal-04930047⟩
  • Daniele Canavese, Afonso Ferreira, Romain Laborde, Mohamed Ali Kandi. Artificial Intelligence Systems in the European Union: Guidelines and Architectures for Compliance-by-Design. 2024. ⟨hal-04794994⟩

Powered by HAL logo

Other projects

CARECloud

Understanding, improving and reducing the environmental impact of cloud computing

Read more

Archi-CESAM

Efficient and safe converged architecture based on near-memory gas pedals / Archi-CESAM

Read more

DiVa

Virtualized disaggregation

Read more

Taranis

Model, deploy, orchestrate and optimize cloud applications and infrastructures

Read more

PEPR Cloud projects

Spirec

Multi-level supervision and prediction for geo-distributed and heterogeneous infrastructures in the Cloud/Edge/IoT continuum

Read more

Steel

Efficient and secure data storage and processing on cloud-based infrastructures

Read more

Silecs

Super Infrastructure for Large-Scale Experimental Computer Science for Cloud/Edge/IoT

Read more

TrustinCloudS

Cloud infrastructure security

Read more
close

FORMULAIRE D'ABONNEMENT

Inscrivez-vous pour recevoir chaque trimestre la Newsletter du PEPR Cloud.

En vous abonnant à la newsletter du PEPR Cloud, vous acceptez de recevoir des informations régulières sur nos projets, nos recherches, nos événements, et autres actualités liées au PEPR.

Vous pourrez vous désabonner à tout moment en utilisant le lien de désabonnement présent sur chaque newsletter.

Politique de confidentialité

Comments are closed.