End-to-end policy-based encryption and management of data in the cloud

Proceedings - 2011 3rd IEEE International Conference on Cloud Computing Technology and Science, CloudCom 2011

Volumn , Issue , 2011, Pages 764-771

  Pearson, Siani ^a   Mont, Marco Casassa ^a   Chen, Liqun ^a   Reed, Archie ^b  

^a HEWLETT PACKARD LABORATORIES   (United Kingdom)

^b Enterprise Services HP   (Australia)

Author keywords

Cloud; Policy enforcement; Privacy; Sticky policy

Indexed keywords

CLOUD MODELS; DATA ATTRIBUTES; DATA MANAGEMENT SOLUTION; DECRYPTION KEYS; FINE-GRAINED CONTROL; KEY MANAGEMENT; POLICY ENFORCEMENT; PRIVACY ISSUE; THIRD PARTIES;

CLOUD COMPUTING; CLOUDS; CRYPTOGRAPHY; INFORMATION MANAGEMENT;

DATA PRIVACY;

EID: 84863151459     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/CloudCom.2011.118     Document Type: Conference Paper

References (26)

1. Pearson, S. "Toward Accountability in the Cloud", View from the Cloud, IEEE Internet Computing, IEEE Computer Society, July/August issue, vol. 15, no. 4, pp. 64-69, 2011.
2. nd Workshop on Privacy Enhancing Technologies, LNCS, Springer Verlag, 2002.
3. Casassa Mont, M., Pearson S., Bramhall, P. "Towards Accountable Management of Identity and Privacy: Sticky Policies and Enforceable Tracing Services", Proc. DEXA 2003, IEEE Computer Society, pp. 377-382, 2003.
4. Shamir, A. "How to Share a Secret", Communications of ACM, 22, pp. 612-613, 1979.
5. Menezes, J., van Oorschot, P.C., Vanstone, S.A., Handbook of Applied Cryptography. CRC Press, 1997.
6. Voltage,(www.voltage.com/technology/Technology- FormatPreservingEncryption.htm
7. Navajos, http://navajosystems.com/technology-encryption.asp
8. Bellare, M., Ristenpart, T., Rogaway, P., Stegers, T., "Formatpreserving Encryption", Selected Areas in Cryptography, LNCS, vol 5867, pp. 295-312, 2009.
9. IBM: The Enterprise Privacy Authorization Language (EPAL), EPAL specification, v1.2,2004. http://www.zurich.ibm.com/security/enterpriseprivacy/ epal/
10. OASIS: XACML,http://www.oasisopen.org/committees/tc-home.php?wg-abbrev= xacml
11. Ardagna, C. et al., "PrimeLife Policy Language", Workshop on Access Control Application Scenarios, W3C, November 2009.http://www.w3.org/2009/ policy-ws/
12. Bussard, L. Becker, M.Y., "Can access control be extended to deal with data handling in privacy scenarios?", Workshop on Access Control Application Scenarios, W3C, November 2009. http://www.w3.org/2009/policy-ws/
13. Papanikolaou, N., Creese, S., Goldsmith, M., Casassa Mont, M., Pearson, S. "ENCORE: Towards a holistic approach to privacy", Proc. SECRYPT 2010.
14. Ardagna, C., Vimercati, S., Samarati, P. "Enhancing user privacy through data handling policies", Data and Applications Security, volume 4127, LNCS, pp. 224-236, 2006. (Pubitemid 44165890)
15. Cranor, L., Web Privacy with P3P, O'Reilly & Associates, 2002.
16. Becker, M.Y., Malkis, A., Bussard, L. "A Framework for Privacy Preferences and Data-Handling Policies", Microsoft Research Cambridge Technical Report, MSR-TR-2009-128, September 2009. http://research.microsoft. com/apps/pubs/default.aspx?id=102614
17. Damianou, N., Dulay, N., Lupu, E., Sloman, M.: The Ponder Policy Specification Language, 2001. http://wwwdse.doc.ic.ac.uk/research/policies/ index.shtml
18. Tang, W. "On using encryption techniques to enhance sticky policies enforcement". Technical Report (TR-CTIT-08-64), Centre for Telematics and Information Technology, 2008.
19. Pearson, S., Casassa Mont, M., "A System for Privacy-aware Resource Allocation and Data Processing in Dynamic Environments", Proc. INetSec06, IFIP, vol. 201, Springer Boston, pp. 471-482, 2006. (Pubitemid 44920681)
20. Pearson, S., Casassa Mont, M. Novoa,M., "Securing Information Transfer within Distributed Computing Environments", IEEE Security & Privacy Magazine, Jan/Feb issue, volume 6, number 1, pp. 34-42, IEEE, 2008. (Pubitemid 351229831)
21. Bezzi, M. and Trabelsi, S. "Data Usage Control in the Future Internet Cloud", Future Interner Assembly, eds. J. Domingue et al., LNCS 6656, Springer, pp. 223-231, 2011.
22. Zuo, Y, O'Keefe, T., "Post-release information privacy protection: A framework and next-generation priacy-enhanced operating system", Information Systems Frontiers, vol9, no 5, pp. 451-467, Springer, 2007. http://www.springerlink.com/content/03718003288553u5/ (Pubitemid 350007342)
23. Perez-Freire, L., Comesana, P., Troncoso-Pastoriza, J. and Perez-Gonzalez, F., "Watermarking security: a survey". Transactions on Data Hiding and Multimedia Security, LNCS, 2006.
24. Bayardo, R., Agrawal, R., "Data Privacy through Optimal k-Anonymisation", Proc. International Conference on Data Engineering, pp. 217-228, 2005. (Pubitemid 41731133)
25. EnCoRe, Ensuring Consent and Revocation project, www.encoreproject.info
26. Pearson, S. and Casassa Mont, M. "Sticky Policies: An Approach for Privacy Management across Multiple Parties", Special Issue on Security and Privacy in an Online World, IEEE Computer, pp. 693-702, July 2011.