Project start date:

Project end date:

Privacy-Preserving Computation In The Cloud

While reaping financial benefits of cloud computing, organizations hand their data to external parties, cloud service providers, for processing and storage. Instead of losing control in this process, organizations need to meet strict internal and statutory regulations.

The Seventh Framework Programme PRACTICE will mitigate insider threats and stop data leakage for computations in the cloud while maintaining economies of scale.

Creating a secure cloud framework using cryptographic technologies will provide better security and privacy guarantees for all parties in cloud-computing scenarios. Team of Top European experts

The PRACTICE consortium consists of key European experts working towards providing privacy and confidentiality for computations in the cloud. The team includes leading industrial and research companies and respected European universities. The consortium’s reach covers 11 countries and 18 organizations and the full chain from research to end-user service providers in the cloud.

Goals of the PRACTICE project are:

  • getting provable guarantees from cloud providers for data confidentiality and integrity;
  • computation on encrypted data, preventing even insiders from disclosing secrets or disrupting the service;
  • flexible architecture and tools allowing seamless migration to new cloud platforms while gradually adding levels of protection.

Key technologies

The team is well posed to cover the promising fundamental technologies that help to achieve the set goals. In PRACTICE the team will investigate

  • Secure Multiparty Computation (MPC),
  • Fully Homomorphic Encryption (FHE),
  • Domain-Specific Development Tools, and the application of
  • Formal Methods to verify relevant properties of resulting systems.

Role of Cybernetica

Cybernetica contributes to PRACTICE our unique expertise in developing tools and applications using secure multiparty computation.

The Sharemind® framework makes secure multiparty computation attainable to developers who are not expert cryptographers. To speed up market adoption, Cybernetica will share our experience of building real-world cloud solutions on Sharemind® with the PRACTICE consortium.

In PRACTICE we will also enhance the developed framework and simplify building services based on secure multiparty computation. We expect that simpler and widely accessible solutions with strong security and privacy guarantees will grow the number of European cloud providers offering them.

Or team will concentrate on building tools for software developers and cloud service providers, so that a wide range of companies would be able to build secure cloud services without Cybernetica’s direct involvement.

Project was funded under the European Union Seventh Framework Programme. Project reference: 609611

Current projects:


The project will test and demonstrate potential governance structures for the network of competence centres using the best practices examples of participants like CERN.


EXCITE will advance foundational theories of model verification and data analysis.


The objective is to turn STACC into a leading and economically independent R&D organisation.


Creating a reliable architecture that enables the European electrical system to function as a single system.


AKIT is an English-Estonian data protection and information security lexicon (Andmekaitse ja infoturbe leksikon).


MAITT will prototype machine learning and AI-powered public domain service delivery in domains that are of importance to the state.


Data protection synthesis of test databases using secure computing technology.


Creating techniques for constructing zero-knowledge proofs for government interactions with citizens, companies or other governments.

New technologies in voting

The project seeks to map the effects emerging technologies have on voting and offer solutions to potential problems.


Implementation of the Estonian Government Cloud.

SPoF2 - Part 3 eID Infrastructure Trust Model

Analysis of and recommendation for the Estonian eID trust model.

Vessel Traffic and Maritime Surveillance System

The project aims to bring to market a new TDOA technology and develop a maritime traffic surveillance product for the international market.


Research & development of a security threat information sharing and correlation system for transnational use.


Implementation of high maturity cyber situational awareness platform for military use.


The project aims to expand the functionalities of CoNurse through developing a stochastic model for implementing smart and dynamic protocol delivery.

Smart Wallet (eKukkur)

The aim of this project is to make the necessary preparations and create the necessary commercial and technological base for the provision of next-generation eID services in accordance with the updated version of eIDAS.


De-risking machine learning technology for cyber security applications in cooperation with European Space Agency.

Past projects:


DataBio demonstrates that enabling data-driven decisionmaking in agriculture, forestry and fishing increases productivity and has a measurable impact to both the economy and the environment.


Development a radio surveillance platform and an adaptive radio network.


NAPLES demonstrates how to seamlessly add security analysis and optimization capabilities on top of Business Process Management tools.


IUT27-1 is centered on systems’ security with a focus on Secure Multiparty Computation, Structured Risk Assessment of information and related systems, and Internet voting.


The support of maritime surveillance and interdiction missions.


PRACTICE will mitigate insider threats and stop data leakage for computations in the cloud while maintaining economies of scale.


Privacy-preserving statistical studies on linked databases.


SafeCloud aimed to re-architect cloud infrastructures with a focus on partitioning and entanglement.


The SUNFISH project will develop and integrate software enabling secure cloud federation as required by European Public Sector bodies.


The goal of TREsPASS was to create a mart ‘attack navigator’, which will trace potential weak points within an organization or a given infrastructure.


The UaESMC project focused on methods for making secure computation more practical in the real world.


MANTICUS APOLLO focused on creating the theoretical foundation for a transnational and comprehensive situational awareness capability for coordinating national defense.


SysFlex will identify issues and solutions associated with integrating large-scale renewable energy and create a plan to assist system operators across Europe.


INTERFACE aims to achieve greater coordination between TSOs and DSOs to ensure a cost-effective and secure supply of electricity.


Analysing the changes in e-voting risk analysis in a situation where voting from a smart device is possible.


Analyzing the impact of biometric facial recognition measures on the e-voting system in ensuring freedom of choice and its applicability in the Estonian e-voting system


The Estonian information security standard aims to develop and promote the level of information security of the Estonian public authorities as well as private businesses.


Study of applicability of cryptographic algorithms in information systems, their spread and assessment of the strength of already implemented cryptographic algorithms.


Creation of a tool to convert a Datalog-like program to a SecreC program (privacy-preserving computation based on Sharemind MPC platform).


Analysis of the Open-eID architecture design offer including the formulation of system security requirements, review and verification of the protocol set in terms of fixed requirements.


Creation of programmable secure multi-party computation and applications.

CDOC 2.0

Analysis for Estonia's new file encryption standard CDOC2.0 and general architecture design.

Eurostat-Cybernetica project ESTAT 2019.0232

The project created a proof-of-concept solution for the secure private processing of longitudinal Mobile Network Operator data in support of official statistics.