A mechanism for policy-driven selection of service providers in SOA and cloud environments

NOTERE'10 - 10th Annual International Conference on New Technologies of Distributed Systems

Volumn , Issue , 2010, Pages 333-338

  Pearson, Siani ^a   Sander, Tomas ^b  

^a HEWLETT PACKARD LABORATORIES   (United Kingdom)

^b HEWLETT PACKARD LABORATORIES   (United States)

Author keywords

Cloud; Decision support; Provisioning; Selection

Indexed keywords

DECISION SUPPORTS; PERSONAL INFORMATION; POLICY DRIVEN; PROVISIONING; RULE BASED SYSTEM; SELECTION; SELECTION OF SERVICE PROVIDER; SEMI-AUTOMATED; SERVICE PROVIDER; TRANSACTION COST;

INFORMATION SERVICES; RISK ASSESSMENT;

DECISION SUPPORT SYSTEMS;

EID: 77955952510     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/NOTERE.2010.5536569     Document Type: Conference Paper

References (28)

1. R. Gellman, "Privacy in the Clouds: Risks to Privacy and Confidentiality from Cloud Computing", World Privacy Forum Report, February 2009.
2. Cloud Security Alliance, "Security Guidance for Critical Areas of Focus in Cloud Computing", April 2009.
3. Gartner, "Assessing the Security Risks of Cloud Computing", 3 June 2008.
4. ENISA, "Cloud Computing: Benefits, risks and recommendations for information security", Ed. Daniele Catteddu and Giles Hogben. November 2009
5. S. Pearson, P. Rao, T. Sander, A. Parry, A. Paull, S. Patruni, V. Dandamudi-Ratnakar and P. Sharma, Scalable, Accountable Privacy Management for Large Organizations, Proc. INSPEC09, IEEE, September 2009.
6. Drools, http://jboss.org/drools/.
7. Jericho Forum, "Cloud Cube Model: Selecting Cloud Formations for Secure Collaboration", v1.0, April 2009. Available via www.jerichoforum.org
8. HP Cloud Assure Service, www.hp.com
9. S.K. Garg, R. Buyya and H.J. Siegel, "Time and cost trade-off management for scheduling parallel applications on Utility Grids", Future Generation Computer Systems, Elsevier, 2009.
10. S.K. Garg, S. Venugopal and R. Buyya, "A Meta-scheduler with Auction Based Resource Allocation for Global Grids", Proc. 14th IEEE International Conference on Parallel and Distributed Systems, IEEE, 2008.
11. IBM, The Enterprise Privacy Authorization Language (EPAL), EPAL specification, v1.2, http://www.zurich.ibm.com/security/enterprise-privacy/epal/ , 2004.
12. OASIS, extensible Access Control Markup Language (XACML). http://www.oasis-open.org/committees/tc-home.php?wg-abbrev=xacml.
13. W3C, The Platform for Privacy Preferences, v1.0. http://www.w3.org/TR/ P3P/, 2002.
14. L. Cranor, Web Privacy with P3P, O'Reilly & Associates, 2002.
15. N. Damianou, N. Dulay, E. Lupu, M. Sloman, The Ponder Policy Specification Language, http://www.dse.doc.ic.ac.uk/research/policies/index. shtml, 2001.
16. PRIME, Privacy and Identity Management for Europe, http://www.prime- project.org.eu, 2008.
17. K. Vaniea, C. Karat, J.B. Gross, J. Karat and C. Brodie, Evaluating assistance of natural language policy authoring, Proc. SOUPS '08, vol. 337. 2008.
18. IBM, REALM project. http://www.zurich.ibm.com/security/publications/2006/ REALM-at-IRIS2006-20060217.pdf
19. OASIS, eContracts Specification v1.0, www.oasisopen.org/apps/org/ workgroup/legalxml-econtracts, 2007.
20. D. Travis, T. Breaux and A.Antón, Analyzing Regulatory Rules for Privacy and Security Requirements. IEEE Transactions on Software Engineering, 34(1), pp. 5-20, 2008.
21. S. Kenny and J. Borking, The Value of Privacy Engineering, Journal of Information, Law and Technology (JILT), 1 .http://elj.warwick.ac.uk/jilt/02-/ kenny.html, 2002.
22. Organization for Economic Co-operation and Development (OECD), Guidelines Governing the Protection of Privacy and Transborder Flow of Personal Data, OECD, Geneva, 1980.
23. J. Borking, Privacy Rules: A Steeple Chase for Systems Architects, www.w3.org/2006/07/privacy-ws/papers/04-borking-rules/, 2007.
24. S. Russel and P. Norvig, Artificial Intelligence - A Modern Approach, 2nd edition, Prentice Hall, Englewood Cliffs, 2003.
25. J. McGough, J. Mortensen, J. Johnson and S. Fadali, A web-based testing system with dynamic question generation, Proc. Frontiers in Education Conference, Reno, NV, IEEE, 2001.
26. J. Bowen and C. Likitvivatanavong, Question-Generation in Constraint-Based Expert Systems, http://ww.4c.ucc.ie
27. J. Li, B. Stephenson, H.R. Motahari-Nezhad and S. Singhal, "A Data Assurance Policy Specification and Enforcement Framework for Outsourced Services", HP Labs Research Report, HPL-2009-357, 2009.
28. COBIT 4.1, www.isaca.org/