curlX: A middleware to enforce access control policies within a cloud environment

Today cloud security and privacy concerns pose significant challenges. One particular challenge consists in how to take into consideration the user´s security policies while accessing the outsourced data. In fact, for a given application, we may have a set of rules, as high level security policy, which needs to hold prior to any query execution. Therefore, the main problem that we tackle in this ongoing project is how to enforce this high level security policy in the cloud storage layer without conflicts. To address this challenges, we propose a middleware denoted curlX which consists of two main processes: the security policy enforcement process and the verification process.