注重隐私的云生态系统和 GDPR 合规性

2019 7th International Conference on Future Internet of Things and Cloud (FiCloud) Pub Date : 2019-08-01 DOI:10.1109/FiCloud.2019.00024

M. Barati, O. Rana, George Theodorakopoulos, P. Burnap

{"title":"注重隐私的云生态系统和 GDPR 合规性","authors":"M. Barati, O. Rana, George Theodorakopoulos, P. Burnap","doi":"10.1109/FiCloud.2019.00024","DOIUrl":null,"url":null,"abstract":"Understanding how cloud providers support the European General Data Protection Regulation (GDPR) remains an imporant challenge for new providers emerging on the market. GDPR influences access to, storage, processing and tranmission of data, requiring these operations to be exposed to a user to seek explicit consent. A privacy-aware cloud architecture is proposed that improves transparency and enables the audit trail of providers who accessed the user data to be recorded. The architecture not only supports GDPR compliance by imposing several data protection requirements on cloud providers, but also benefits from a blockchain network that securely stores the providers' operations on the user data. A blockchainbased tracking approach based on a shared privacy agreement implemented as a smart contract is described - providers who violate GDPR rules are automatically reported through a voting mechanism.","PeriodicalId":268882,"journal":{"name":"2019 7th International Conference on Future Internet of Things and Cloud (FiCloud)","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2019-08-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"14","resultStr":"{\"title\":\"Privacy-Aware Cloud Ecosystems and GDPR Compliance\",\"authors\":\"M. Barati, O. Rana, George Theodorakopoulos, P. Burnap\",\"doi\":\"10.1109/FiCloud.2019.00024\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Understanding how cloud providers support the European General Data Protection Regulation (GDPR) remains an imporant challenge for new providers emerging on the market. GDPR influences access to, storage, processing and tranmission of data, requiring these operations to be exposed to a user to seek explicit consent. A privacy-aware cloud architecture is proposed that improves transparency and enables the audit trail of providers who accessed the user data to be recorded. The architecture not only supports GDPR compliance by imposing several data protection requirements on cloud providers, but also benefits from a blockchain network that securely stores the providers' operations on the user data. A blockchainbased tracking approach based on a shared privacy agreement implemented as a smart contract is described - providers who violate GDPR rules are automatically reported through a voting mechanism.\",\"PeriodicalId\":268882,\"journal\":{\"name\":\"2019 7th International Conference on Future Internet of Things and Cloud (FiCloud)\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-08-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"14\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2019 7th International Conference on Future Internet of Things and Cloud (FiCloud)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/FiCloud.2019.00024\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 7th International Conference on Future Internet of Things and Cloud (FiCloud)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/FiCloud.2019.00024","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 14

摘要

了解云提供商如何支持欧洲通用数据保护条例(GDPR)仍然是市场上新兴提供商面临的一个重要挑战。GDPR影响数据的访问、存储、处理和传输，要求将这些操作公开给用户，以征求用户的明确同意。提出了一种具有隐私意识的云架构，该架构提高了透明度，并允许记录访问用户数据的提供商的审计跟踪。该架构不仅通过对云提供商施加若干数据保护要求来支持GDPR合规性，而且还受益于区块链网络，该网络将提供商的操作安全地存储在用户数据上。描述了一种基于区块链的跟踪方法，该方法基于作为智能合约实现的共享隐私协议——违反GDPR规则的提供商将通过投票机制自动报告。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Privacy-Aware Cloud Ecosystems and GDPR Compliance

Understanding how cloud providers support the European General Data Protection Regulation (GDPR) remains an imporant challenge for new providers emerging on the market. GDPR influences access to, storage, processing and tranmission of data, requiring these operations to be exposed to a user to seek explicit consent. A privacy-aware cloud architecture is proposed that improves transparency and enables the audit trail of providers who accessed the user data to be recorded. The architecture not only supports GDPR compliance by imposing several data protection requirements on cloud providers, but also benefits from a blockchain network that securely stores the providers' operations on the user data. A blockchainbased tracking approach based on a shared privacy agreement implemented as a smart contract is described - providers who violate GDPR rules are automatically reported through a voting mechanism.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2019 7th International Conference on Future Internet of Things and Cloud (FiCloud)

自引率

0.00%

发文量