M. Barati, O. Rana, George Theodorakopoulos, P. Burnap
{"title":"Privacy-Aware Cloud Ecosystems and GDPR Compliance","authors":"M. Barati, O. Rana, George Theodorakopoulos, P. Burnap","doi":"10.1109/FiCloud.2019.00024","DOIUrl":null,"url":null,"abstract":"Understanding how cloud providers support the European General Data Protection Regulation (GDPR) remains an imporant challenge for new providers emerging on the market. GDPR influences access to, storage, processing and tranmission of data, requiring these operations to be exposed to a user to seek explicit consent. A privacy-aware cloud architecture is proposed that improves transparency and enables the audit trail of providers who accessed the user data to be recorded. The architecture not only supports GDPR compliance by imposing several data protection requirements on cloud providers, but also benefits from a blockchain network that securely stores the providers' operations on the user data. A blockchainbased tracking approach based on a shared privacy agreement implemented as a smart contract is described - providers who violate GDPR rules are automatically reported through a voting mechanism.","PeriodicalId":268882,"journal":{"name":"2019 7th International Conference on Future Internet of Things and Cloud (FiCloud)","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2019-08-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"14","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 7th International Conference on Future Internet of Things and Cloud (FiCloud)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/FiCloud.2019.00024","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 14
Abstract
Understanding how cloud providers support the European General Data Protection Regulation (GDPR) remains an imporant challenge for new providers emerging on the market. GDPR influences access to, storage, processing and tranmission of data, requiring these operations to be exposed to a user to seek explicit consent. A privacy-aware cloud architecture is proposed that improves transparency and enables the audit trail of providers who accessed the user data to be recorded. The architecture not only supports GDPR compliance by imposing several data protection requirements on cloud providers, but also benefits from a blockchain network that securely stores the providers' operations on the user data. A blockchainbased tracking approach based on a shared privacy agreement implemented as a smart contract is described - providers who violate GDPR rules are automatically reported through a voting mechanism.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
