Cardiff University | Prifysgol Caerdydd ORCA
Online Research @ Cardiff 
WelshClear Cookie - decide language by browser settings

Tracking GDPR compliance in cloud-based service delivery

Barati, Masoud and Rana, Omer ORCID: https://orcid.org/0000-0003-3597-2646 2022. Tracking GDPR compliance in cloud-based service delivery. IEEE Transactions on Services Computing 15 (3) , pp. 1498-1511. 10.1109/TSC.2020.2999559

[thumbnail of Blockchains_Masoud.pdf]
Preview
 PDF - Accepted Post-Print Version
Download (2MB) | Preview

Abstract

The European General Data Protection Regulation (GDPR) has had a far-reaching impact on data privacy for cloud providers. GDPR influences access to, storage, and transmission of personal data, requiring these operations to be verified by cloud users through explicit consent prior to execution. GDPR rules implemented for such operations can be ambiguous and often open to interpretation, making manual verification a time consuming and error prone process for cloud providers. An encoding of GDPR rules is described, with each operation carried out using these rules recorded into a Blockchain for auditing purposes. This work shows how some GDPR rules can appear as opcodes in smart contracts to verify the operations of providers on user data in an automatic way. An abstract model is designed to demonstrate how cloud providers can access and deploy such contracts through a Blockchain-based virtual machine. A case study is used to demonstrate how this approach can be used in practice. The case study uses several design patterns and smart contracts to verify provider operations, including read, write, execution and transfer on user data. Validation is undertaken by deploying the smart contracts in a Blockchain test network to investigate the execution costs of GDPR compliance checking.

Item Type: Article
Date Type: Publication
Status: Published
Schools: Computer Science & Informatics
Publisher: Institute of Electrical and Electronics Engineers (IEEE)
ISSN: 1939-1374
Funders: EPSRC
Date of First Compliant Deposit: 4 June 2020
Date of Acceptance: 25 May 2020
Last Modified: 26 Nov 2024 23:45
URI: https://orca.cardiff.ac.uk/id/eprint/132170

Citation Data

Cited 7 times in Scopus. View in Scopus. Powered By Scopus® Data

Actions (repository staff only)

Edit Item Edit Item
Dimensions
Altmetric
Download Statistics

Downloads

Downloads per month over past year

View more statistics

CORE (COnnecting REpositories)


Maintained by Cardiff University Information Services