Description
CryptoAC (Cryptographic Access Control) provides end-to-end protection of sensitive data – such as documents, files and messages – through cryptographic enforcement of access control policies.
CryptoAC is an open-source tool written in the (multiplatform) Kotlin language; it comes either with an easy microservice-based architecture including an optimisation step to maximise the performance and the security of the deployment or, potentially, even as a programming library or plugin. CryptoAC is highly modular, can be easily extended to fit the needs of new scenarios and its APIs allow for straightforward integration with other services.
Please refer to the the documentation for more details.
Related Projects
Related Collaborations
Related Publications
2024 (2)
-
Stefano Berlato, Matteo Rizzi, Matteo Franzil, Silvio Cretti, Pietro De Matteis, Roberto Carbone
Work-in-Progress: A Sidecar Proxy for Usable and Performance-Adaptable End-to-End Protection of Communications in Cloud Native Applications
In: 2024 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW) (OSVS) (DOI)
Access Control Cryptographic Access Control Cloud Native Decentralization of Trust -
Stefano Berlato, Silvio Cretti, Domenico Siracusa, Silvio Ranise
Multi-Objective Microservice Orchestration: Balancing Security and Performance in CCAM
In: 27th Conference on Innovation in Clouds, Internet and Networks (ICIN 2024) (DOI)
Cryptographic Access Control Cloud Computing Privacy Enhancing Cryptography
2022 (1)
-
Stefano Berlato, Roberto Carbone, Umberto Morelli, Silvio Ranise
End-to-End Protection of IoT Communications Through Cryptographic Enforcement of Access Control Policies
In: Proceedings of the 36th Annual IFIP WG 11.3 Conference on Data and Applications Security and Privacy (DBSec 2022) (DOI)
2021 (1)
-
Stefano Berlato, Roberto Carbone, Silvio Ranise
Cryptographic Enforcement of Access Control Policies in the Cloud: Implementation and Experimental Assessment
In: 18th International Conference on Security and Cryptography (SECRYPT 2021)
2020 (2)
-
Stefano Berlato, Roberto Carbone, Adam J. Lee, Silvio Ranise
Formal Modelling and Automated Trade-Off Analysis of Enforcement Architectures for Cryptographic Access Control in the Cloud
In: ACM Transactions on Privacy and Security (TOPS) -
Stefano Berlato, Roberto Carbone, Adam J. Lee, Silvio Ranise
Exploring Architectures for Cryptographic Access Control Enforcement in the Cloud for Fun and Optimization
In: 15th ACM ASIA Conference on Computer and Communications Security (ASIACCS 2020) (DOI)
Related Theses
-
Stefano Berlato (PhD Thesis, University of Genoa, 2024)
A Security Service for Performance-Aware End-to-End Protection of Sensitive Data in Cloud Native Applications
Supervisors: Silvio Ranise, Roberto Carbone -
Simone Brunello (Bachelor's Thesis, University of Trento, 2024)
Hybrid Enforcement for Role-based Cryptographic Access Control
Supervisors: Silvio Ranise | Co-supervisors: Roberto Carbone, Stefano Berlato -
Ion Andy Ditu (Bachelor's Thesis, University of Trento, 2023)
Leveraging Trusted Execution Environment for Efficient Revocation and Security in Cryptographic Access Control
Supervisors: Silvio Ranise | Co-supervisors: Roberto Carbone, Stefano Berlato
