M. Barati, O. Rana, George Theodorakopoulos, P. Burnap
{"title":"注重隐私的云生态系统和 GDPR 合规性","authors":"M. Barati, O. Rana, George Theodorakopoulos, P. Burnap","doi":"10.1109/FiCloud.2019.00024","DOIUrl":null,"url":null,"abstract":"Understanding how cloud providers support the European General Data Protection Regulation (GDPR) remains an imporant challenge for new providers emerging on the market. GDPR influences access to, storage, processing and tranmission of data, requiring these operations to be exposed to a user to seek explicit consent. A privacy-aware cloud architecture is proposed that improves transparency and enables the audit trail of providers who accessed the user data to be recorded. The architecture not only supports GDPR compliance by imposing several data protection requirements on cloud providers, but also benefits from a blockchain network that securely stores the providers' operations on the user data. A blockchainbased tracking approach based on a shared privacy agreement implemented as a smart contract is described - providers who violate GDPR rules are automatically reported through a voting mechanism.","PeriodicalId":268882,"journal":{"name":"2019 7th International Conference on Future Internet of Things and Cloud (FiCloud)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-08-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"14","resultStr":"{\"title\":\"Privacy-Aware Cloud Ecosystems and GDPR Compliance\",\"authors\":\"M. Barati, O. Rana, George Theodorakopoulos, P. Burnap\",\"doi\":\"10.1109/FiCloud.2019.00024\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Understanding how cloud providers support the European General Data Protection Regulation (GDPR) remains an imporant challenge for new providers emerging on the market. GDPR influences access to, storage, processing and tranmission of data, requiring these operations to be exposed to a user to seek explicit consent. A privacy-aware cloud architecture is proposed that improves transparency and enables the audit trail of providers who accessed the user data to be recorded. The architecture not only supports GDPR compliance by imposing several data protection requirements on cloud providers, but also benefits from a blockchain network that securely stores the providers' operations on the user data. A blockchainbased tracking approach based on a shared privacy agreement implemented as a smart contract is described - providers who violate GDPR rules are automatically reported through a voting mechanism.\",\"PeriodicalId\":268882,\"journal\":{\"name\":\"2019 7th International Conference on Future Internet of Things and Cloud (FiCloud)\",\"volume\":\"1 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-08-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"14\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2019 7th International Conference on Future Internet of Things and Cloud (FiCloud)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/FiCloud.2019.00024\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 7th International Conference on Future Internet of Things and Cloud (FiCloud)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/FiCloud.2019.00024","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Privacy-Aware Cloud Ecosystems and GDPR Compliance
Understanding how cloud providers support the European General Data Protection Regulation (GDPR) remains an imporant challenge for new providers emerging on the market. GDPR influences access to, storage, processing and tranmission of data, requiring these operations to be exposed to a user to seek explicit consent. A privacy-aware cloud architecture is proposed that improves transparency and enables the audit trail of providers who accessed the user data to be recorded. The architecture not only supports GDPR compliance by imposing several data protection requirements on cloud providers, but also benefits from a blockchain network that securely stores the providers' operations on the user data. A blockchainbased tracking approach based on a shared privacy agreement implemented as a smart contract is described - providers who violate GDPR rules are automatically reported through a voting mechanism.