Access Control and Data Separation Metrics in Cloud Infrastructures

Abstract

An automatically controlled and analyzed privacy level in cloud environments would probably help to allay or at least reduce privacy concerns of prospective clients, in particular if the clients themselves can check the compliance with a required privacy level during regular data processing. However, for each intended control firstly an appropriate set of data sources has to be determined carefully, then the results have to be combined to useful metrics, so that the measurements results approximate specific privacy objectives. This paper proposes appropriate data sources and a partly automatic approach to collect measurement data for controls of separate data processing and access control for clients of cloud infrastructure services (IaaS).