Cardiff University | Prifysgol Caerdydd ORCA
Online Research @ Cardiff 
WelshClear Cookie - decide language by browser settings

Compliance checking of cloud providers: design and implementation

Barati, Masoud, Adu-Duodu, Kwabena, Rana, Omer ORCID: https://orcid.org/0000-0003-3597-2646, Aujla, GaganGeet Singh and Ranjan, Rajiv 2023. Compliance checking of cloud providers: design and implementation. Distributed Ledger Technologies: Research and Practice 10.1145/3585538

[thumbnail of 3585538.pdf] PDF - Accepted Post-Print Version
Download (1MB)

Abstract

The recognition of capabilities supplied by cloud systems is presently growing up. Collecting or sharing healthcare data and sensitive information especially during Covid-19 pandemic has motivated organizations and enterprises to leverage the upsides coming from cloud-based applications. However, the privacy of electronic data in such applications remains a significant challenge for cloud vendors to adapt their solutions with existing privacy legislation standards such as general data protection regulation (GDPR). This paper, first, proposes a formal model and verification for data usage requests of providers in a cloud composite service using a model checking tool. A cloud pharmacy scenario is presented to illustrate the connectivity of providers in the composite service and the stream of their requests for both collection and movement of patient data. A set of verification is, then, undertaken over the pharmacy service in accordance with three significant GDPR obligations, namely user consent, data access and data transfer. Following that, the paper designs and implements a cloud container virtualization based on the verified formal model realising GDPR requirements. The container makes use of some enforcement smart contracts to only proceed the providers’ requests, which are compliant with GDPR. Finally, several experiments are provided to investigate the performance of our approach in terms of time, memory and cost.

Item Type: Article
Date Type: Published Online
Status: Published
Schools: Computer Science & Informatics
ISSN: 2769-6472
Funders: EPSRC
Date of First Compliant Deposit: 1 March 2023
Date of Acceptance: 13 February 2023
Last Modified: 03 May 2023 08:59
URI: https://orca.cardiff.ac.uk/id/eprint/157405

Actions (repository staff only)

Edit Item Edit Item
Altmetric
Dimensions
Download Statistics

Downloads

Downloads per month over past year

View more statistics

CORE (COnnecting REpositories)


Maintained by Cardiff University Information Services