From Regulatory Obligations to Enforceable Accountability Policies in the Cloud

The widespread adoption of the cloud model for service delivery triggered several data protection issues. As a matter of fact, the proper delivery of these services typically involves sharing of personal/business data between the different parties involved in the service provisioning. In order to increase cloud consumer’s trust, there must be guarantees on the fair use of their data. Accountability provides the necessary assurance about the data governance practices to the different stakeholders involved in a cloud service chain. In this context, we propose a framework for the representation of accountability policies. Such policies offer to end-users a clear view of the privacy and accountability clauses asserted by the entities they interact with, as well as means to represent their preferences. Our framework offers two accountability policy languages: (i) an abstract language called AAL devoted for the representation of preferences/clauses in an human readable fashion, and (ii) a concrete one for the implementation of enforceable policies.

Domaines

Génie logiciel [cs.SE]

Jean-Claude Royer : Connectez-vous pour contacter le contributeur

https://hal.science/hal-01214387

Soumis le : lundi 12 octobre 2015-11:05:19

Dernière modification le : vendredi 5 janvier 2024-03:24:37

Dates et versions

hal-01214387 , version 1 (12-10-2015)

Identifiants

HAL Id : hal-01214387 , version 1

Citer

Walid Benghabrit, Hervé Grall, Jean-Claude Royer, Mohamed Sellami, Monir Azraoui, et al.. From Regulatory Obligations to Enforceable Accountability Policies in the Cloud. Cloud Computing and Services Sciences, Springer International Publishing Switzerland, 2015. ⟨hal-01214387⟩

Exporter

BibTeX XML-TEI Dublin Core DC Terms EndNote DataCite

Collections

UNIV-NANTES INSTITUT-TELECOM CNRS INRIA LINA EURECOM PARISTECH DAPI INRIA2 LS2N IMT-ATLANTIQUE LTCI TSP-DISSEM TSP-DIEGO NANTES-UNIVERSITE ISEP

276 Consultations

0 Téléchargements