HOMECommunication Materials > 2023-02 Newsletter

February 2023 Newsletter

WELCOME TO A NEW EDITION OF MEDINA NEWSLETTER !!!

February 2023

This newsletter is a publication of the MEDINA Project, and aims to provide information on the project’s activities and to showcase the project’s achievements.

The main objective of the Horizon 2020 MEDINA project is to provide access to secure, real-time certified cloud computing. In the future, the MEDINA platform that has been developed by the European project partners strife for enabling continuous certification through a series of efficient tools. This is based on the European Cybersecurity Certification Scheme for Cloud Services (EUCS), which has been addressed in the project by means of uniform “assessment rules” – measures, metrics, and measurement procedures. With continuous audits, we can ensure better overall security than with point-in-time audits. +info

Two use cases are being implemented: European Certification of Multi-cloud backends for IoT Solutions by Bosch and Continuous Audit of SaaS Solutions for the Public Sector by Fabasoft. +info

Exploitation & Standardization

Continuous compliance: From traditional auditing to real-time certification. In this article Fabasoft presents the advantages of continuous compliance in the context of the MEDINA project – including the company compliance dashboard,

+info

The MEDINA cloud certification Language allows toexpressing rules for cloud certification, in a uniform way and without the ambiguity of natural language.

+info

Evaluation tools for Certification. When applying automated tools for certification tasks, these tools must be trusted. To be able to trust a tool, however, several criteria may be important, including code reviews by auditors and thorough evaluations of the tools in question. .

+info

Meetings

MEDINA General Assembly. In October 2022, MEDINA partners met for the first time face to face at TECNALIA’s facilities in Derio (Spain).

+info

Publications

Six MEDINA public deliverables have been released in October 2022: D2.4, D2.7D3.2D3.5D4.2 and D5.2.

Two more MEDINA public deliverables have been published in January 2023: D2.2 and D5.4.

+info

A  poster and a paper  have been published:

  • Kunz, I., Schneider, A.,  Banse, C., Weiss, K. & Binder, A. (2022, November). Poster: Patient Community — A Test Bed for Privacy Threat Analysis. In CCS’22: Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security.(pp. 3383-3385)Open access version
  • Küchler, A. & Banse, C (2022, December). Representing LLVM-IR in a Code Property Graph. In 25th International Conference on Information Security (ISC).  Open access version

Dissemination

MEDINA Building blocks MEDINA at ETSI Conference 2022. MEDINA project was presented at the ETSI Security Conference 2022 as chair of the Security Research track on day 3 of the conference, that took place from 3rd to 5th October, in ETSI, Sophia Antipolis, France.

+info

MEDINA discussions at the ENISA EUCS winter summit 2022. The MEDINA team was invited by ENISA to live demo the integrated prototype and discuss several technical topics.

+info