SECUREDATACLOUD PROJECT:LEGAL CHALLENGES
VAISHALI MIRCHANDANI - TEAM&CLOUD
SECUREDATACLOUD PROJECT
INDEXThe project: SecureDataCloud ProjectThe technology: SecureMultipartiComputationThe implementation: Case StudiesThe problems: Legal Challenges
THE SECUREDATACLOUD PROJECT
THE SECUREDATACLOUD PROJECT
Work Package E: SESAR Long Term and Innovative Research
THE SECUREDATACLOUD PROJECT• Participants:
– Innaxis Research Institute
– Istanbul Technical University
– Turkish General Directorate of State Airports Authority
– Team&Cloud
THE SECUREDATACLOUD PROJECT• Objectives:– Research air transport
and ATM problems– Pursue a high level of
data sharing– Guarantee data privacy– Use secure multiparty
computation
THE SECUREDATACLOUD PROJECTWP1• Business case analysis• Business case selection
WP2• Algorithm set definition• Framework implementation
WP3• Case Study definition• Case Study execution
WP4• Dissemination
SECURE MULTIPARTY COMPUTATION
SECUREMULTIPARTYCOMPUTATION• SMC is a set of techniques and algorithms that
allows two or more non-mutually trusted parties, to perform some kind of computation over a data set, while keeping their respective information private
• No need of a trusted third party• Each party holds some kind of private input • Each player only learns:– the output of the computation – the information that can be inferred from their own inputs
SECUREMULTIPARTYCOMPUTATION
• Examples– Electronic Voting– Biding contracts and
auctions– Rankings– Statistics
SECUREMULTIPARTYCOMPUTATION
• Examples– Electronic Voting– Biding contracts and
auctions– Rankings– Statistics
CASE STUDIES: SLOT TRADING AND DELAY
REPORTS
SLOT TRADING AND DYNAMIC LANDING QUEUES
• A secure auction process:– The auctioneer is a Secure Multiparty
Computation Engine (SMC Engine). – All the participants are Semi-honest parties
• Primary and Secondary Slot Trading Markets• Strategic and Operational Slot Trading
Transactions
SLOT TRADING AND DYNAMIC LANDING QUEUES
ANALYSIS OF DELAY REPORTS
• A benchmarking process:– Reports delay causes using cleared information coming from different
participants, securely merged in order to achieve additional knowledge about causes of delays and their evolution through time
– All the participants are Semi-honest parties
• Preprocessed info in single analysis tables (route + time window)
• 99 different delay causes according to the IATA classification• Participants:
– Pilots, airline representatives, ATC officers, Network Manager, airport representatives and handling organizations
ANALYSIS OF DELAY REPORTS
LEGAL CHALLENGES IN A REAL SCENARIO
INNOVATION BASED LEGAL CHALLENGES
• Who is to blame if a new service or product fails in a “go-live” stage? The developers? The Testers? The Quality Assurance people? The Authorizing party?
TECHNOLOGY BASED LEGAL CHALLENGES
• Cloud usage• Who is to blame if the system is not used
correctly? Who is to blame if a party inputs false data?
• How to certify the SMC process? How to certify the SMC framework? The encryption and protocols used? The data transmission?
• Who is the owner of the secret-shares?
CASE STUDIES LEGAL CHALLENGES
• Change of market regulation• Coordination for an international law• Access restrictions• Authorizations• Referee• Database access in parties premises
THANK YOU
P. Coordinator: Massimiliano Zanin [email protected]