Research Commons
      • Browse 
        • Communities & Collections
        • Titles
        • Authors
        • By Issue Date
        • Subjects
        • Types
        • Series
      • Help 
        • About
        • Collection Policy
        • OA Mandate Guidelines
        • Guidelines FAQ
        • Contact Us
      • My Account 
        • Sign In
        • Register
      View Item 
      •   Research Commons
      • University of Waikato Research
      • Computing and Mathematical Sciences
      • Computing and Mathematical Sciences Papers
      • View Item
      •   Research Commons
      • University of Waikato Research
      • Computing and Mathematical Sciences
      • Computing and Mathematical Sciences Papers
      • View Item
      JavaScript is disabled for your browser. Some features of this site may not work without it.

      STRATUS: Towards returning data control to cloud users

      Ko, Ryan K.L.; Russello, Giovanni; Nelson, Richard; Pang, Shaoning; Cheang, Aloysius; Dobbie, Gill; Sarrafzadeh, Abdolhossein; Chaisiri, Sivadon; Asghar, Muhammad Rizwan; Holmes, Geoffrey
      Thumbnail
      Files
      Ryanko-stratus.pdf
      Accepted version, 191.1Kb
      DOI
       10.1007/978-3-319-27161-3_6
      Find in your library  
      Citation
      Export citation
      Ko, R. K. L., Russello, G., Nelson, R., Pang, S., Cheang, A., Dobbie, G., … Holmes, G. (2015). STRATUS: Towards returning data control to cloud users. In G. Wang, A. Zomaya, G. M. Perez, & K. Li (Eds.), Algorithms and Architectures for Parallel Processing: ICA3PP International Workshops and Symposiums Proceedings (Vol. LNCS 9532, pp. 57–70). Switzerland: Springer International Publishing. http://doi.org/10.1007/978-3-319-27161-3_6
      Permanent Research Commons link: https://hdl.handle.net/10289/10147
      Abstract
      When we upload or create data into the cloud or the web, we immediately lose control of our data. Most of the time, we will not know where the data will be stored, or how many copies of our files are there. Worse, we are unable to know and stop malicious insiders from accessing the possibly sensitive data. Despite being transferred across and within clouds over encrypted channels, data often has to be decrypted within the database for it to be processed. Exposing the data at some point in the cloud to a few privileged users is undoubtedly a vendor-centric approach, and hinges on the trust relationships data owners have with their cloud service providers. A recent example of the abuse of the trust relationship is the high-profile Edward Snowden case. In this paper, we propose a user-centric approach which returns data control to the data owners – empowering users with data provenance, transparency and auditability, homomorphic encryption, situation awareness, revocation, attribution and data resilience. We also cover key elements of the concept of user data control. Finally, we introduce how we attempt to address these issues via the New Zealand Ministry of Business Innovation and Employment (MBIE)-funded STRATUS (Security Technologies Returning Accountability, Trust and User-centric Services in the Cloud) research project.
      Date
      2015
      Type
      Conference Contribution
      Publisher
      Springer International Publishing
      Rights
      ©2015 Springer.This is the author's accepted version. The final publication is available at Springer via dx.doi.org/10.1007/978-3-319-27161-3_6
      Collections
      • Computing and Mathematical Sciences Papers [1455]
      Show full item record  

      Usage

      Downloads, last 12 months
      157
       
       
       

      Usage Statistics

      For this itemFor all of Research Commons

      The University of Waikato - Te Whare Wānanga o WaikatoFeedback and RequestsCopyright and Legal Statement