Towards safer information sharing in the cloud
| Autor: | Marinella Petrocchi, Marco Casassa-Mont, Ilaria Matteucci, Marco Luca Sbodio |
|---|---|
| Rok vydání: | 2014 |
| Předmět: |
Knowledge management
Cloud computing security Computer Networks and Communications business.industry Computer science Information sharing Internet privacy Provisioning Cloud computing Policy deployment Sharing Agreements Policy enforcement Service provider Policy analysis Cloud security Information technology management Policy authoring Data-centric information sharing Electronic data Safety Risk Reliability and Quality business Software Data sharing agreements Information Systems |
| Zdroj: | International journal of information security (Internet) 14 (2015): 319–334. doi:10.1007/s10207-014-0258-5 info:cnr-pdr/source/autori:Casassa-Mont M.; Matteucci I.; Petrocchi M.; Sbodio M.L./titolo:Towards safer information sharing in the cloud/doi:10.1007%2Fs10207-014-0258-5/rivista:International journal of information security (Internet)/anno:2015/pagina_da:319/pagina_a:334/intervallo_pagine:319–334/volume:14 |
| ISSN: | 1615-5270 1615-5262 |
| DOI: | 10.1007/s10207-014-0258-5 |
| Popis: | Web interactions usually require the exchange of personal and confidential information for a variety of purposes, including enabling business transactions and the provisioning of services. A key issue affecting these interactions is the lack of trust and control on how data are going to be used and processed by the entities that receive it. In the traditional world, this problem is addressed using contractual agreements, those are signed by the involved parties, and law enforcement. This could be done electronically as well but, in addition to the trust issue, there is currently a major gap between the definition of legal contracts regulating the sharing of data, and the software infrastructure required to support and enforce them. How to enable organisations to provide more automation in this process? How to ensure that legal contracts can be actually enforced by the underlying IT infrastructure? How to enable end-users to express their preferences and constraints within these contracts? This article describes our R&D work to make progress towards addressing this gap via the usage of electronic Data Sharing Agreements (e-DSA). The aim is to share our vision, discuss the involved challenges and stimulate further research and development in this space. We specifically focus on a cloud scenario because it provides a rich set of use cases involving interactions and information sharing among multiple stakeholders, including users and service providers. © 2014 Springer-Verlag Berlin Heidelberg. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|
Full text from SpringerLink