Change search
ReferencesLink to record
Permanent link

Direct link
Security and Privacy Preservation of Evidence in Cloud Accountability Audits
Furtwangen Univ, Cloud Res Lab, Furtwangen, Germany..
Karlstad University, Faculty of Health, Science and Technology (starting 2013), Department of Mathematics and Computer Science.
Furtwangen Univ, Cloud Res Lab, Furtwangen, Germany..
2016 (English)In: CLOUD COMPUTING AND SERVICES SCIENCE, CLOSER 2015, 2016, 95-114 p.Conference paper (Refereed)Text
Abstract [en]

Cloud accountability audits are promising to strengthen trust in cloud computing by providing reassurance about the processing data in the cloud according to data handling and privacy policies. To effectively automate cloud accountability audits, various distributed evidence sources need to be considered during evaluation. The types of information range from authentication and data access logging to location information, information on security controls and incident detection. Securing that information quickly becomes a challenge in the system design, when the evidence that is needed for the audit is deemed sensitive or confidential information. This means that securing the evidence at-rest as well as in-transit is of utmost importance. In this paper, we present a system that is based on distributed software agents which enables secure evidence collection with the purpose of automated evaluation during cloud accountability audits. We thereby present the integration of Insynd as a suitable cryptographic mechanism for securing evidence. We present our reasoning for choosing Insynd by showing a comparison of Insynd properties with requirements imposed by accountability evidence collection as well as an analysis how security threats are being mitigated by Insynd. We put special emphasis on security and privacy protection in our system analysis.

Place, publisher, year, edition, pages
2016. 95-114 p.
Series
, Communications in Computer and Information Science, ISSN 1865-0929 ; 581
National Category
Computer and Information Science
Research subject
Computer Science
Identifiers
URN: urn:nbn:se:kau:diva-41203DOI: 10.1007/978-3-319-29582-4_6ISI: 000371383500006ISBN: 978-3-319-29582-4; 978-3-319-29581-7OAI: oai:DiVA.org:kau-41203DiVA: diva2:916335
Conference
5th International Conference on Cloud Computing and Services Science (CLOSER), MAY 20-22, 2015, Lisbon, PORTUGAL
Available from: 2016-04-01 Created: 2016-04-01 Last updated: 2016-04-01Bibliographically approved

Open Access in DiVA

No full text

Other links

Publisher's full text

Search in DiVA

By author/editor
Pulls, Tobias
By organisation
Department of Mathematics and Computer Science
Computer and Information Science

Search outside of DiVA

GoogleGoogle Scholar

Altmetric score

Total: 150 hits
ReferencesLink to record
Permanent link

Direct link