Virtualised service platforms and cloud computing hold great promise for delivery of large applications in e-Government. However, to date, the fundamental shared-resource nature of virtualisation technologies has raised legitimate security concerns for Government and other organisations with duties to protect confidential data.

The PASSIVE project proposes an improved model of security for such virtualised systems to ensure that:

  • adequate separation of concerns (e.g. policing, judiciary) can be achieved even in large scale deployments,
  • threats from co-hosted operating systems are detected and dealt with;
  • public trust in application providers is maintained even in a hosting environment where the underlying infrastructure is highly dynamic.

To achieve these aims, the consortium proposes:

  • A policy-based Security architecture, to allow security provisions to be easily specified, and efficiently addressed.
  • Fully virtualised resource access, with fine-grained control over device access, running on an ultra-lightweight Virtual Machine Manager.
  • A lightweight, dynamic system for authentication of hosts and applications in a virtualised environment.

In so doing, PASSIVE will lower the barriers to adoption of virtualised hosting by government users, so that they may achieve the considerable gains in energy efficiency, reduced capital expenditure and flexibility offered by virtualisation.

Title of the Project Policy-Assessed system-level Security of Sensitive Information processing in Virtualised Environments
Proposal Number ICT-2009.1.4-257644
Contract Number 257644
Starting date – End date 01/06/2010 – 31/05/2012
Duration (in months) 24
Total Budget 3,580,140.00 €
Total Manpower (PM) 351
Community Financial Contribution 2,349,982.00 €
Project Officer Dirk Van-Rooy
Project Manager Charalabos Skianis
Technical Manager Panagiotis Rizomiliotis
Cordis Link http://cordis.europa.eu/fetch?CALLER=PROJ_ICT&ACTION=D&CAT=PROJ&RCN=95251

Comments are closed.