PRIvacy & Security MAintaining Services in the CLOUD

Smart City


According to the European Commission definition a Smart City is a place where the traditional networks and services are made more efficient with the use of digital and telecommunication technologies, for the benefit of its inhabitants and businesses.

Within our project two areas related to mobility and security are investigated and discussed, and cryptographic mechanisms will be researched:

  • Reduction of fraud in the ICT implementation of the European Disable Badge for public parking areas, both on the basis of physical –i.e. smartcards - and virtual access right –i.e. e-access through mobile devices
  • And storage and security mechanisms of all the different video streaming generated by the CCTV cameras in the Smart City, and how to make them available for public agents (emergency services, law enforcement units, traffic control centers, etc.)


Lombardia Informatica SpA (LISPA) is a company owned by Regione Lombardia, of which basically is the IT department. Among its several duties, LISPA oversees hosting and managing IT infrastructures of several IT bodies such as hospitals, municipalities and other organizations. Regional regulations, aimed at reducing costs of public IT infrastructures, call for a rationalization of public data centers, eliminating smaller ones. Hence, many small public bodies that up to now have kept and managed their IT infrastructure at their premises, should move them to LISPA’s hosting sites. To better meet the needs of these organizations, optimizing costs and rationalising resource usage, LISPA has decided to improve its offerings with an improved IaaS platform. Public bodies will be either able to design and set it up on their own, or with the assistance of LISPA.


PRISMACLOUD EGovernment pilot has been built within this framework. The scenario adopted for PRISMACLOUD lies within this framework. A couple of public bodies will act as Pilot case, setting up their processing center that will be used as test bed for PRISMACLOUD crypto tools.
Public bodies will design and set up their virtual IT infrastructure and define their back up policies. Thanks to PRISMACLOUD services, they will take advantage of a secured, distributed storage system allowing them to use resources more efficiently and periodically check backup integrity/reliability. Moreover, thanks to another PRISMACLOUD service, public bodies will receive certified evidence that their virtual infrastructure is isolated from the ones of other customers.


The e-Health use case proposed inside the PRISMACLOUD Project aims to supporting secure and privacyfriendly interaction between patients and healthcare providers or between different hospital services and the clinicians. The figure below shows the architecture used for the e-Health use case based on the FCSR’s Trusted Healthcare Platform (THP). The main objective of this use case is to add several privacy and security features based on PRISMACLOUD primitivesto the THP.

In particular three of the PRISMACLOUD Services will be used to extend the THP’s features:

  • The Selective Authentic Exchange permitting the THP to redact health documents on behalf of the patient according to user‘s privacy and recipient’s need using malleable signatures.
  • The Big Data Anonimization service with the aim of supporting open health data to the research community, i.e., by means of anonimized datasets.
  • The Verifiable Statistics with the capibility to outsource computation on authenticated (and encrypted) data having the possibility to audit the correctness of the computations operation by a recipient.



Become a Member