100 Percent IT - Knowledge Transfer Partnership
100 Percent IT
Integrating trusted computing technology into public cloud computing infrastructure to provide public cloud services with verifiable security, privacy and trust to develop enhanced product lines.
20 October 2014 - 28 June 2017
Widespread adoption of public cloud computing is sometimes hindered by concerns over data privacy and security. The aim of this Knowledge Transfer Partnership (KTP) is to enable a change in the trust relationship users have with their cloud computing resources provider, by integrating trusted computing technology into public cloud computing infrastructure. Trusted computing is a method where the state of a computing system can be recorded and cryptographically verified.
This partnership combines the complementary strengths of the Centre and 100 Percent IT to develop novel technology that has strong potential for commercial impact. The anticipated change in the trust relationship in public cloud should open up the market for 100 Percent IT to supply a range of users who would previously only have considered private cloud to be secure and trusted enough for their needs. Technology developed during the KTP will be put forward for auditing by a third party such as CESG after the project concludes, to certify the security of the system and render it more commercially attractive to a wider market.
At Cloud Security Expo in April 2016, Professor David Wallom presented a significant output of the KTP, a distributed remote attestation service named 'Porridge'. The Porridge service uses multiple Trusted Third Parties as a way of building a cryptographically secure and measurable IaaS cloud service. This allows users to know that the cloud configuration they are using is correct and as expected, in a chain of trust from the hardware of the host, to the host hypervisor, their virtual machine and their data; and can be continually checked against a secure externally hosted reference. See slides from his presentation.