From Regulatory Obligations to Enforceable Accountability Policies in the Cloud

Abstract : The widespread adoption of the cloud model for service delivery triggered several data protection issues. As a matter of fact, the proper delivery of these services typically involves sharing of personal/business data between the different parties involved in the service provisioning. In order to increase cloud consumer’s trust, there must be guarantees on the fair use of their data. Accountability provides the necessary assurance about the data governance practices to the different stakeholders involved in a cloud service chain. In this context, we propose a framework for the representation of accountability policies. Such policies offer to end-users a clear view of the privacy and accountability clauses asserted by the entities they interact with, as well as means to represent their preferences. Our framework offers two accountability policy languages: (i) an abstract language called AAL devoted for the representation of preferences/clauses in an human readable fashion, and (ii) a concrete one for the implementation of enforceable policies.
Document type :
Book sections
Complete list of metadatas

https://hal.archives-ouvertes.fr/hal-01214387
Contributor : Jean-Claude Royer <>
Submitted on : Monday, October 12, 2015 - 11:05:19 AM
Last modification on : Monday, September 9, 2019 - 3:24:04 PM

Identifiers

  • HAL Id : hal-01214387, version 1

Citation

Walid Benghabrit, Hervé Grall, Jean-Claude Royer, Mohamed Sellami, Monir Azraoui, et al.. From Regulatory Obligations to Enforceable Accountability Policies in the Cloud. Cloud Computing and Services Sciences, Springer International Publishing Switzerland, 2015. ⟨hal-01214387⟩

Share

Metrics

Record views

426