This document specifies the first version of the architecture of the CLARUS platform. The main component of this platform is a proxy in charge of protecting customers’ data in a transparent way, while these are stored and processed in the cloud.
The design of the CLARUS architecture is defined based on the outcomes of WP2, namely the description of the use cases in deliverable D2.1  and the list of requirements specified in D2.2 . The architecture described in this document captures the main technical modules to be developed in relation to one another, in order to help the combination of different cloud services such as data storage or search operations with different protection techniques (encryption, anonymisation, data splitting/merging). This document aims at answering the following questions:
- How does CLARUS protect the storage and processing of data in the cloud?
- How is CLARUS configured?
- How is CLARUS protected?
- How does the end-user, or end-user applications, communicate with CLARUS?
With this aim, the document presents:
- the adopted architectural approach;
- a set of CLARUS modules proposed to tackle the challenges of ensuring the security and privacy of the storage and processing of the data in the cloud;
- the technical integration of these various modules.