Academia.eduAcademia.edu

Outline

Title
Abstract
Data Life Cycle
Generation of Data Phase
Related Work
Collection Methods
Data Minimization
Use and Retention Limitation
Disclosure and Transfer Data
Sensitive Data
Discussion and Conclusion
References

A Framework for Enhancing Privacy Provision in Cloud Computing

Profile image of omar batarfiomar batarfi

Abstract

Cloud computing is considered a new generation of technology that has offered many benefits such as flexibility, efficiency, reduction in IT cost and so on. However, the dependence on the cloud provider to process and manage the personal data leads to many privacy and confidentiality risks.. In this paper, we propose a framework that aims to evaluate if the cloud provider meets the privacy related issues. Moreover, this proposed framework helps the cloud provider to enhance the privacy provision level to increase the trust of customers on cloud provider services.

Related papers

Privacy and trust in cloud computing
Yasamin Alagrash, Ijariit Journal

This paper focuses on analyzing security and privacy problems facing cloud computing. The major issue discussed in the research that of losing control of data by both the cloud service providers (CSPs) and cloud service users (CSOs). Cloud computing offers organizations an innovative business model to adopt IT services without having to incur massive investment costs. A general analysis of the cloud is provided including its various forms. The growth and development of cloud computing technology are hampered by the fears of losing control of sensitive data by corporations and individuals. Solutions regarding this problem are discussed, and an intensive elucidation of the optimal one is included.

View PDFchevron_right
Privacy & security in the Cloud
Will Venters

Journal of International Technology and Information Management, 2013

Privacy and security issues are frequently presented as major inhibitors of cloud adoption. Some of these are operational issues and others relate to regulatory and compliance requirements that vary by industry and location. There is a growing body of guidance that seeks to clarify the implications of these concerns for various parts of the cloud supply chain. This paper provides a review of the business and legal risks associated with cloud computing and critically reviews the guidance available. It pays particular attention to the implications of the PRISM revelations for the development of a cloud marketplace that aims to keep data private and secure. A number of responses to cloud risks are available, including technological fixes and business responses. Each response has its own costs and requirements in terms of organisational capability and the paper evaluates the various responses that potential cloud adopters can use to manage the risks associated with cloud computing.

View PDFchevron_right
An Overview of Privacy Scheme in Cloud Computing
prince sello

Southern African Institute For Industrial Engineering 2014, 2014

(IaaS).An example is the accessing of services from remote databases through the use of Internet. This means users cannot physically or directly access data from the cloud server, without a client's knowledge. Therefore, there is no need for users to know the exact location of the server; but there is a need for securing the data and information especially in public cloud computing. The aim of this study was to investigate the security challenges or vulnerabilities of cloud computing and propose a conceptual solution. In this regard, a systematic literature search was conducted. Descriptive statistics was used to analyse the data. The researcher found that there are a lot of research issues within the area of security in cloud computing. Furthermore, through this overview study the researcher found that most policies of cloud computing providers allow them to modify or delete data which is not used or that occupy a chunk of the storage space without consulting the clients. This is another security vulnerability issue which creates a research platform.

View PDFchevron_right
Privacy in the cloud
Jay Kesan

Proceedings of the 2011 Workshop on Governance of Technology, Information, and Policies - GTIP '11, 2011

Human life today has become entangled in the Internet. We access e-mail, store content, and use services online without a thought as to where data reside or how data are protected. The "cloud," a conceptualization of how data reside on the Internet rather than locally, is the latest technological innovation or computing trend du jour. However, many concerns surrounding cloud computing remain unaddressed. How are the data we store online kept confidential? Who else has the right to access our private information? What kind of laws and policies offer us protection?

View PDFchevron_right
Privacy in Cloud Systems
Adel Hamdan Abu Arrah

Abstract. Cloud computing technology is used as inexpensive systems to gather and utilize computational capability. This technology improves applications services by arranging machines and distributed resources in a single huge computational entity. Clouds consist of data centers which are owned by the same institute. The homogeneity within each data centre in the infrastructure is the main feature for the cloud computing but any conflict between heterogeneous data centers and/or different administration domains can become a serious issue for cloud interoperability and privacy. This paper suggests a new framework to solve the interoperability problem.

View PDFchevron_right
Privacy, Security and Trust Issues in Cloud Computing
Andrea Li

SSRG International Journal of Computer Science and Engineering (SSRG-IJCSE) , 2019

The use of technology has become an intrinsic part of our lives and most of the economic activities now takes place electronically. Emerging at a fast pace, new technologies allow businesses to be more innovative and competitive. Many of these new technologies foster collaboration, not without creating conflicting needs. Companies must ensure that they use technology safely while engaging more stakeholders to be more competitive. As the Cloud computing gaining popularity, it is also carrying some concerns to the implementors. This paper focuses on the topics such as issues in Cloud Computing, risks related to the privacy and how we can ensure the confidentiality of data

View PDFchevron_right
Privacy Regulations for Cloud Computing
Thenmozhi Tandabany

homepage.tudelft.nl

View PDFchevron_right
Privacy, Security and Trust in Cloud Computing HP
Faraz Haq

cloud computing; privacy; security; trust Cloud computing refers to the underlying infrastructure for an emerging model of service provision that has the advantage of reducing cost by sharing computing and storage resources, combined with an on-demand provisioning mechanism relying on a pay-per-use business model. These new features have a direct impact on information technology (IT) budgeting but also affect traditional security, trust and privacy mechan-isms. The advantages of cloud computing -its ability to scale rapidly, store data remotely, and share services in a dynamic environment -can become disadvantages in maintaining a level of assurance sufficient to sus-tain confidence in potential customers. Some core traditional mechanisms for addressing privacy (such as model contracts) are no longer flexible or dynamic enough, so new approaches need to be developed to fit this new paradigm. In this chapter we assess how security, trust and privacy issues occur in the context of cloud computing and discuss ways in which they may be addressed.

View PDFchevron_right
On Protecting Privacy in the Cloud
Arosha Bandara

2015

Cloud computing has now emerged as popular computing paradigm for data storage and computation for enterprises and individuals. Its major characteristics include the pay-per-use pricing model, where users pay only for the resources they consume with no upfront cost for hardware/software infrastructures, and the capability of providing scalable and unlimited storage and computation resources to meet changing business needs of enterprises with minimal management overhead [1]. The cloud, however, presents a major limitation to enterprises and individuals who move to public clouds: they lose control over the systems that manage their data and applications, leading to increased security and privacy concerns [2,3,4].

View PDFchevron_right
Privacy Regulations for Cloud Computing: Compliance and Implementation in Theory and Practice
Yves Poullet

Computers, Privacy and Data Protection: an Element of Choice, 2011

View PDFchevron_right

References (19)

  1. Peter Mell and Tim Grance, "The NIST Definition of Cloud Computing", NIST Information Technology Laboratory, 2009
  2. Ronald L. Krutz and Russell Dean Vines, " Cloud Security: A Comprehensive Guide to Secure Cloud Computing", Wiley Publishing, Inc., Indianapolis, Indiana, 2010, ISBN: 978-0-470-58987-8
  3. Dr. Arockiam L, Parthasarathy G and Monikandan S , "privacy in cloud computing: a survey", SIPM, FCST, ITCA, WSE, ACSIT, CS & IT 06, pp. 321-330, 2012. DOI : 10.5121/csit.2012.2331
  4. Tim Mather; Subra Kumaraswamy and Shahed Latif, "Cloud Security and Privacy: An Enterprise Perspective on Risks and Compliance", O'Reilly Media, Inc. 2009, ISBN-13: 978-0-596-80276-9
  5. Siani Pearson and Andrew Charlesworth. 2009. "Accountability as a Way Forward for Privacy Protection in the Cloud". In Proceedings of the 1st International Conference on Cloud computing (CloudCom '09), Martin Gilje Jaatun, Gansen Zhao, and Chunming Rong (Eds.). Springer-Verlag, Berlin, Heidelberg, 131-144, 2009
  6. Marko Hölbl, "Cloud Computing Security and Privacy Issues", CEPIS 2011, LSI SIN (10)02 , Version V17/15.03.2011
  7. Dr. Mohammed A. T. AlSudiari & Dr. TGK Vasista ," cloud computing and privacy regulations: an exploratory study on issues and implications", Advanced Computing: An International Journal ( ACIJ ), Vol.3, No.2, March 2012
  8. Tariq Ehsan Elahi and Siani Pearson; "Privacy Assurance: Bridging the Gap Between Preference and Practice", Trust, Privacy and Security in Digital Business Lecture Notes in Computer Science, 2007, Volume 4657, 65-74.
  9. Siani Pearson, "Taking account of privacy when designing cloud computing services," icse-cloud, 2009 ICSE Workshop on Software Engineering Challenges of Cloud Computing, 2009, pp.44-52.
  10. Murthy V. Rallapalli; " A Privacy Agreement Negotiation Model in B2C E-Commerce Transactions"; International Journal of Information Security and Privacy, October-December 2011, volume 5(4), 1-7.
  11. U.S.-Export.gov ,"Safe Harbor Privacy Principles", Available: http://export.gov/safeharbor/eu/eg_main_018475.asp
  12. FTC , "Federal Trade Commission Enforcement of the U.S.-EU and U.S.-Swiss Safe Harbor Frameworks" , Available: http://www.business.ftc.gov/documents/0494-federal-trade- commission-enforcement-us-eu-and-us-swiss-safe-harbor-frameworks
  13. White House-Washington, "National Strategy for Trusted Identities in Cyberspace: enhancing online choice, efficiency, security, and privacy", 2011
  14. OECD, "OECD Guidelines on the Protection of Privacy and Transborder Flows of Personal Data", Available: http://www.oecd.org/internet/ieconomy/oecdguidelinesontheprotectiono fprivacyandtransborderflowsofpersonaldata.htm
  15. APEC, "APEC Privacy Framework", APEC Secretariat, 35 Heng Mui Keng Terrace, Singapore 119616; 2005, ISBN 981-05-4471-5
  16. Madrid , "International Standards on the Protection of Personal Data and Privacy. The Madrid Resolution", International Conference of Data Protection and Privacy Commissioners, 2009
  17. Madrid, "Data protection authorities from over 50 countries approve the 'Madrid Resolution' on international privacy standards", 2009
  18. ISO/IEC 29100, "Information technology -Security techniques - Privacy framework", 2011
  19. Thomas, Haeberlen and Lionel Dupré, "Cloud Computing Benefits, risks and recommendations for information security", ENISA 2012, Rev. B, V no. 2

Related papers

Privacy Issues In Cloud Computing
IOSR Journals

Cloud computing is the delivery of computing as a service rather than a product. It provides shared resources, software, and information to computers and other devices over a network. The increasing network bandwidth and reliable yet flexible network connections make it even possible that users can now subscribe high quality services from data and software that reside solely on remote data centres. We can store and retrieve the data as we like using cloud computing. The cloud computing paradigm changes the way in which information is managed, especially where personal data processing is concerned. End-users can access cloud services without the need for any expert knowledge of the underlying technology. This is a key characteristic of cloud computing, which offers the advantage of reducing cost through the sharing of computing and storage resources, combined with an on-demand provisioning mechanism based on a pay-per-use business model. These new features have a direct impact on the IT budget and cost of ownership, but also bring up issues of traditional security, trust and privacy mechanisms.Privacy, in this Article, refers to the right to self-determination, that is, the right of individuals to 'know what is known about them', be aware of stored information about them, control how that information is communicated and prevent its abuse. In other words, it refers to more than just confidentiality of information. Protection of personal information (or data protection) derives from the right to privacy via the associated right to self-determination. Every individual has the right to control his or her own data, whether private, public or professional. Privacy issues are increasingly important in the online world. It is generally accepted that due consideration of privacy issues promotes user confidence and economic development. However, the secure release, management and control of personal information into the cloud represent a huge challenge for all stakeholders, involving pressures both legal and commercial. This study analyses the challenges posed by cloud computing and the standardization work being done by various standards development organizations (SDOs) to mitigate privacy risks in the cloud, including the role of privacy-enhancing technologies (PETs).

View PDFchevron_right
Cloud Computing Privacy (1)
Ola Ali

Cloud computing is a model for enabling convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction. This cloud model promotes availability and is composed of five essential characteristics, three delivery models, and four deployment models. economic utility model with existing computing technologies including the distributed services, applications and information infrastructure. However, without appropriate security and privacy solutions designed for clouds, this potentially revolutionizing computing paradigm could become a huge failure, as in this field cloud computing include activities such as the use of social networking sites and other forms of personal computing. And that's why, the privacy issues and concerns are arising among it.so cloud must ensure that customers continue to have the same level of security and privacy control over their applications and services.

View PDFchevron_right
Furthering the Growth of Cloud Computing by Providing Privacy as a Service
Miriam Capretz

The evolution of Cloud Computing as a viable business solution for providing hardware and software has created many security concerns. Among these security concerns, privacy is often overlooked. If Cloud Computing is to continue its growth, this privacy concern will need to be addressed. In this work we discuss the current growth of Cloud Computing and the impact the public sector and privacy can have in furthering this growth. To begin to provide privacy protection for Cloud Computing, we introduce privacy constraints that outline privacy preferences. We propose the expansion of Cloud Service Level Agreements (SLAs) to include these privacy constraints as Quality of Service (QoS) levels. This privacy QoS must be agreed upon along with the rest of the QoS terms within the SLA by the Cloud consumer and provider. Finally, we introduce Privacy as a Service (PraaS) to monitor the agreement and provide enforcement if necessary.

View PDFchevron_right
A System for Quantitative Evaluation of the Privacy in Cloud Computing
omar batarfi

Cloud Computing is a new model in the IT's world. The privacy protection is one of the key challenges that the cloud computing faces. The customers, in the cloud computing, depend on the cloud provider to manage their data. In addition, the cloud computing resources are sharing with multi customers and these resources are located in different regions that subject to different jurisdictions. All of these matters lead to many privacy risks. In this paper, we try to develop an initial quantitative evaluating system that aims to help the customers to know what the privacy's weaknesses on the cloud providers by evaluating whether the cloud provider meets the privacy related issues or not.; this will help them to make the decision.

View PDFchevron_right
Privacy in Cloud computing : A Survey
Dr Manikandasaran S S

Various cloud computing models are used to increase the profit of an organization. Cloud provides a convenient environment and more advantages to business organizations to run their business. But, it has some issues related to the privacy of data. User's data are stored and maintained out of user's premises. The failure of data protection causes many issues like data theft which affects the individual organization. The cloud users may be satisfied, if their data are protected properly from unauthorized access. This paper presents a survey on different privacy issues involved in the cloud service. It also provides some suggestions to the cloud users to select their suitable cloud services by knowing their privacy policies.

View PDFchevron_right
580 California St., Suite 400
San Francisco, CA, 94104
© 2025 Academia. All rights reserved