Title :
Compliance-Preserving Cloud Storage Federation Based on Data-Driven Usage Control
Author :
Wuchner, Tobias ; Muller, Sebastian ; Fischer, Ray
Author_Institution :
Tech. Univ. Munchen, Munich, Germany
Abstract :
Cloud storage federation improves service availability and reduces vendor lock-in risks of single-provider cloud storage solutions. Federation therefore distributes and replicates data among different cloud storage providers. Missing controls on data location and distribution however introduce security and compliance issues. This paper proposes a novel approach of using data-driven usage control to preserve compliance constraints in cloud storage federation. Based on common compliance regulations and laws we provide a brief categorization of compliance problems into spatial, temporal, and qualitative requirements. In addition, we show how usage control policies can be employed to constrain federation according to these categories. To demonstrate the feasibility of our approach we evaluate security and performance of our prototypical implementation.
Keywords :
cloud computing; conformance testing; distributed databases; security of data; storage management; cloud storage providers; compliance constraints; compliance issues; compliance laws; compliance problems categorization; compliance regulations; compliance-preserving cloud storage federation; data distribution; data location missing controls; data replication; data-driven usage control; qualitative requirements; security issues; service availability; single-provider cloud storage solutions; spatial requirements; temporal requirements; usage control policies; vendor lock-in risks; Availability; Cloud computing; Context; Data models; Memory; Security; Servers; cloud storage; compliance; federation; usage control;
Conference_Titel :
Cloud Computing Technology and Science (CloudCom), 2013 IEEE 5th International Conference on
Conference_Location :
Bristol
DOI :
10.1109/CloudCom.2013.149
