Data flow management and compliance in cloud computing

Jatinder Singh; Julia Powles; Thomas Pasquier; Jean Bacon

doi:10.1109/MCC.2015.69

Data flow management and compliance in cloud computing

Jatinder Singh^*, Julia Powles, Thomas Pasquier, Jean Bacon

^*Corresponding author for this work

Department of Computer Science

Research output: Contribution to specialist publication › Article (Specialist Publication)

32 Citations (Scopus)

Abstract

As cloud computing becomes an increasingly dominant means of providing computing resources, legal and regulatory issues associated with the cloud also become more pronounced. In particular, there is a heightened focus on ensuring the privacy and integrity of users' personal data. At present, the cloud is opaque, a black box. The technical means for enforcing and demonstrating compliance with data management practices lag behind legal and regulatory aspirations. Information flow control (IFC) enables auditable, fine-grained management as data moves throughout systems. IFC offers the potential to improve the visibility and control over data flows within and between cloud services and cloud-hosted applications. The authors use real-world legal/regulatory examples to show how IFC can help satisfy data management obligations and improve the accountability of responsible parties.

Original language	English
Pages	24-32
Number of pages	9
Volume	2
No.	4
Specialist publication	IEEE Cloud Computing
DOIs	https://doi.org/10.1109/MCC.2015.69
Publication status	Published - 1 Jan 2015

Keywords

cloud
compliance
data protection
information flow control
privacy
regulatory issues
security

Access to Document

10.1109/MCC.2015.69

Handle.net

Persistent link

Cite this

@misc{35ec9ed2e0024919b61caf14b1c3767e,

title = "Data flow management and compliance in cloud computing",

abstract = "As cloud computing becomes an increasingly dominant means of providing computing resources, legal and regulatory issues associated with the cloud also become more pronounced. In particular, there is a heightened focus on ensuring the privacy and integrity of users' personal data. At present, the cloud is opaque, a black box. The technical means for enforcing and demonstrating compliance with data management practices lag behind legal and regulatory aspirations. Information flow control (IFC) enables auditable, fine-grained management as data moves throughout systems. IFC offers the potential to improve the visibility and control over data flows within and between cloud services and cloud-hosted applications. The authors use real-world legal/regulatory examples to show how IFC can help satisfy data management obligations and improve the accountability of responsible parties.",

keywords = "cloud, compliance, data protection, information flow control, privacy, regulatory issues, security",

author = "Jatinder Singh and Julia Powles and Thomas Pasquier and Jean Bacon",

year = "2015",

month = jan,

day = "1",

doi = "10.1109/MCC.2015.69",

language = "English",

volume = "2",

pages = "24--32",

journal = "IEEE Cloud Computing",

issn = "2325-6095",

}

TY - GEN

T1 - Data flow management and compliance in cloud computing

AU - Singh, Jatinder

AU - Powles, Julia

AU - Pasquier, Thomas

AU - Bacon, Jean

PY - 2015/1/1

Y1 - 2015/1/1

N2 - As cloud computing becomes an increasingly dominant means of providing computing resources, legal and regulatory issues associated with the cloud also become more pronounced. In particular, there is a heightened focus on ensuring the privacy and integrity of users' personal data. At present, the cloud is opaque, a black box. The technical means for enforcing and demonstrating compliance with data management practices lag behind legal and regulatory aspirations. Information flow control (IFC) enables auditable, fine-grained management as data moves throughout systems. IFC offers the potential to improve the visibility and control over data flows within and between cloud services and cloud-hosted applications. The authors use real-world legal/regulatory examples to show how IFC can help satisfy data management obligations and improve the accountability of responsible parties.

AB - As cloud computing becomes an increasingly dominant means of providing computing resources, legal and regulatory issues associated with the cloud also become more pronounced. In particular, there is a heightened focus on ensuring the privacy and integrity of users' personal data. At present, the cloud is opaque, a black box. The technical means for enforcing and demonstrating compliance with data management practices lag behind legal and regulatory aspirations. Information flow control (IFC) enables auditable, fine-grained management as data moves throughout systems. IFC offers the potential to improve the visibility and control over data flows within and between cloud services and cloud-hosted applications. The authors use real-world legal/regulatory examples to show how IFC can help satisfy data management obligations and improve the accountability of responsible parties.

KW - cloud

KW - compliance

KW - data protection

KW - information flow control

KW - privacy

KW - regulatory issues

KW - security

UR - http://www.scopus.com/inward/record.url?scp=84942417981&partnerID=8YFLogxK

U2 - 10.1109/MCC.2015.69

DO - 10.1109/MCC.2015.69

M3 - Article (Specialist Publication)

AN - SCOPUS:84942417981

SN - 2325-6095

VL - 2

SP - 24

EP - 32

JO - IEEE Cloud Computing

JF - IEEE Cloud Computing

ER -

Data flow management and compliance in cloud computing

Abstract

Keywords

Access to Document

Handle.net

Other files and links

Fingerprint

Cite this