Assuring Data Privacy in Cloud Transformations

Tom Kirkham; Django Armstrong; Karim Djemame; Marcelo Corrales Compagnucci; Mariam Kiran; Iheanyi Nwankwo; Ming Jiang; Nikolaus Forgó

doi:10.1109/trustcom.2012.97

Assuring Data Privacy in Cloud Transformations

Tom Kirkham, Django Armstrong, Karim Djemame, Marcelo Corrales Compagnucci, Mariam Kiran, Iheanyi Nwankwo, Ming Jiang, Nikolaus Forgó

The Faculty of Law

4 Citations (Scopus)

Abstract

Cloud transformations require dynamic redistribution of resources across cloud infrastructure. From a legal perspective this movement of data from one data processor to another without the explicit consent of the data subject is a threat to data privacy. Levels of assurance and accountability have to be provided from the cloud infrastructure providers to the data subject in order to maintain trust. In cases of Cloud Transformation multiple providers are present and passing accountability down the chain is essential. Existing Service Level Agreements (SLA) and policy based privacy implementations fail to provide the flexibility and accountability needed in establishing these new relationships. By introducing combined risk and privacy assessment alongside SLA negotiation, the legal and data management implications of Cloud Transformation events can be better accounted for. This will better protect the privacy of data subjects and increase confidence and trust in the Cloud computing platform.

Original language	English
Title of host publication	Proceedings of the 11th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (IEEE TrustCom-12)
Number of pages	1069
Publisher	IEEE
Publication date	2012
Pages	1063
DOIs	https://doi.org/10.1109/trustcom.2012.97
Publication status	Published - 2012

Access to Document

10.1109/trustcom.2012.97

Cite this

Assuring Data Privacy in Cloud Transformations. / Kirkham, Tom; Armstrong, Django; Djemame, Karim et al.

Proceedings of the 11th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (IEEE TrustCom-12). IEEE, 2012. p. 1063.

Research output: Chapter in Book/Report/Conference proceeding › Article in proceedings › Research › peer-review

@inproceedings{6f67e58c64f149e195c80874c026d7e2,

title = "Assuring Data Privacy in Cloud Transformations",

abstract = "Cloud transformations require dynamic redistribution of resources across cloud infrastructure. From a legal perspective this movement of data from one data processor to another without the explicit consent of the data subject is a threat to data privacy. Levels of assurance and accountability have to be provided from the cloud infrastructure providers to the data subject in order to maintain trust. In cases of Cloud Transformation multiple providers are present and passing accountability down the chain is essential. Existing Service Level Agreements (SLA) and policy based privacy implementations fail to provide the flexibility and accountability needed in establishing these new relationships. By introducing combined risk and privacy assessment alongside SLA negotiation, the legal and data management implications of Cloud Transformation events can be better accounted for. This will better protect the privacy of data subjects and increase confidence and trust in the Cloud computing platform.",

author = "Tom Kirkham and Django Armstrong and Karim Djemame and {Corrales Compagnucci}, Marcelo and Mariam Kiran and Iheanyi Nwankwo and Ming Jiang and Nikolaus Forg{\'o}",

year = "2012",

doi = "10.1109/trustcom.2012.97",

language = "English",

pages = "1063",

booktitle = "Proceedings of the 11th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (IEEE TrustCom-12)",

publisher = "IEEE",

}

TY - GEN

T1 - Assuring Data Privacy in Cloud Transformations

AU - Kirkham, Tom

AU - Armstrong, Django

AU - Djemame, Karim

AU - Corrales Compagnucci, Marcelo

AU - Kiran, Mariam

AU - Nwankwo, Iheanyi

AU - Jiang, Ming

AU - Forgó, Nikolaus

PY - 2012

Y1 - 2012

N2 - Cloud transformations require dynamic redistribution of resources across cloud infrastructure. From a legal perspective this movement of data from one data processor to another without the explicit consent of the data subject is a threat to data privacy. Levels of assurance and accountability have to be provided from the cloud infrastructure providers to the data subject in order to maintain trust. In cases of Cloud Transformation multiple providers are present and passing accountability down the chain is essential. Existing Service Level Agreements (SLA) and policy based privacy implementations fail to provide the flexibility and accountability needed in establishing these new relationships. By introducing combined risk and privacy assessment alongside SLA negotiation, the legal and data management implications of Cloud Transformation events can be better accounted for. This will better protect the privacy of data subjects and increase confidence and trust in the Cloud computing platform.

AB - Cloud transformations require dynamic redistribution of resources across cloud infrastructure. From a legal perspective this movement of data from one data processor to another without the explicit consent of the data subject is a threat to data privacy. Levels of assurance and accountability have to be provided from the cloud infrastructure providers to the data subject in order to maintain trust. In cases of Cloud Transformation multiple providers are present and passing accountability down the chain is essential. Existing Service Level Agreements (SLA) and policy based privacy implementations fail to provide the flexibility and accountability needed in establishing these new relationships. By introducing combined risk and privacy assessment alongside SLA negotiation, the legal and data management implications of Cloud Transformation events can be better accounted for. This will better protect the privacy of data subjects and increase confidence and trust in the Cloud computing platform.

UR - https://ieeexplore.ieee.org/document/6296092/metrics#metrics

U2 - 10.1109/trustcom.2012.97

DO - 10.1109/trustcom.2012.97

M3 - Article in proceedings

SP - 1063

BT - Proceedings of the 11th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (IEEE TrustCom-12)

PB - IEEE

ER -

Assuring Data Privacy in Cloud Transformations

Abstract

Access to Document

Other files and links

Fingerprint

Cite this