Cloud Data Security
Cloud computing offers on-demand services with flexibility and scalability on a simple pay-per-use basis. However, major concerns about security and data protection are hindering widespread adoption among users, especially small and medium-sized enterprises (SMEs). This is because existing guidelines, IT standards and laws on security and data protection do not take virtual environments into account. It is therefore a major challenge for cloud providers to comply with them. As a result, cloud providers are unable to provide security to SMEs.
To address these privacy and security issues, we are launching the Cloud Data Security (CloudDataSec) project, which aims to design cloud services to comply with government data protection laws. Security Management as a Service (SMaaS) modules enable users to take the necessary security and data protection measures depending on the sensitivity of their data, as outlined above.
Related Publications
Frank Doelitzscher, Christoph Reich and Anthony Sulistio, Designing Cloud Services Adhering to Government Privacy Laws, Proceedings of the 3rd IEEE International Symposium on Trust, Security and Privacy for Emerging Applications (TSP-10), June 29-July 1, 2010, Bradford, UK.
