TRINICS: Transparent Information on Individual Cloud Service Usage

The success of cloud computing with its virtually unlimited and scalable resources results in the emergence of numerous novel cloud-based services as well as the transition of traditional software applications to the cloud. Providers of cloud services as well as users benefit from a wide range of advantages: Cloud services can be used for free or at least for a reasonable price, they allow access to data from nearly everywhere, they provide failure-safe and redundant storage of data, and obviate the need of operating own infrastructure. These advantages are dearly bought with giving up privacy to a large extent, often even unnoticeable. It is especially due to cloud providers’ usage of own and third-party infrastructure that hides who (companies and possibly foreign government agencies) has access to data in the cloud. The project TRINICS addresses exactly these concerns.

TRINICS aims at improving the transparency over the usage of data through cloud services. This allows end users to assess their individual risks and uncovers the need for sufficient self data protection. To this end, we will analyze network traffic of a user’s device in order to derive for each application an individual statistic over the utilized cloud services. Based on this information, we can, e.g., inform the user if her private data is being sent to countries with weaker privacy legislation. However, although having access to such information, a layman might still wonder how dangerous or not the own usage behavior is. Hence, TRINICS will enable users to compare their own cloud usage profile anonymously with the profiles of others. To this end, we will group users based on lifestyle and sociodemographic background and derive a representative cloud usage pattern for each group. By doing so, we enable users to compare themselves to different comparison groups and hence allow for a better assessment of the individual cloud usage as a basis for taking an informed decision on the future usage of cloud services.

TRINICS is a joined project with Sirrix AG security technologies and the Chair of Sociology of Technology and Organization at RWTH Aachen University.



Publications

Jan Pennekamp, Martin Henze, Klaus Wehrle. A Survey on the Evolution of Privacy Enforcement on Smartphones and the Road Ahead. Pervasive and Mobile Computing, vol. 42. December 2017.
PDF Cite DOI
Martin Henze, Jan Pennekamp, David Hellmanns, Erik Mühmer, Jan Henrik Ziegeldorf, Arthur Drichel, Klaus Wehrle. CloudAnalyzer: Uncovering the Cloud Usage of Mobile Apps. Proceedings of the 14th EAI International Conference on Mobile and Ubiquitous Systems: Computing, Networking and Services (MobiQuitous ‘17), Nov 7 - Nov 10, 2017, Melbourne, VIC, Australia. November 2017.
PDF Cite DOI GitHub
Martin Henze, Ritsuma Inaba, Ina Berenice Fink, Jan Henrik Ziegeldorf. Privacy-preserving Comparison of Cloud Exposure Induced by Mobile Apps. Proceedings of the 14th EAI International Conference on Mobile and Ubiquitous Systems: Computing, Networking and Services (MobiQuitous), Melbourne, Australia. November 2017.
PDF Cite DOI
Martin Henze, Mary Peyton Sanford, Oliver Hohlfeld. Veiled in Clouds? Assessing the Prevalence of Cloud Computing in the Email Landscape. Proceedings of the 2017 Network Traffic Measurement and Analysis Conference (TMA 2017), Jun 21 - Jun 23, 2017, Dublin, Ireland. June 2017.
PDF Cite DOI
Martin Henze, Daniel Kerpen, Jens Hiller, Michael Eggert, David Hellmanns, Erik Mühmer, Oussama Renuli, Henning Maier, Christian Stüble, Roger Häußling, Klaus Wehrle. Towards Transparent Information on Individual Cloud Service Usage. Proceedings of the 2016 IEEE International Conference on Cloud Computing Technology and Science (CloudCom), Dec 12 - Dec 15, 2016, Luxembourg, Luxembourg. December 2016.
PDF Cite DOI