Practical Data Compliance for Cloud Storage

Abstract

Despite their increasing proliferation and technical variety, existing cloud storage technologies by design lack support for enforcing compliance with regulatory, organizational, or contractual data handling requirements. However, with legislation responding to rising privacy concerns, this becomes a crucial technical capability for cloud storage systems. In this paper, we introduce PRADA, a practical approach to enforce data compliance in key-value based cloud storage systems. To this end, PRADA introduces a transparent data handling layer which enables clients to specify data handling requirements and provides operators with the technical means to adhere to them. The evaluation of our prototype shows that the modest overheads for supporting data handling requirements in cloud storage systems are practical for real-world deployments.

Publication
Proceedings of the 2017 IEEE International Conference on Cloud Engineering, Vancouver, BC, Canada
BibTeX Citation
@inproceedings{2017-ic2e-henze-prada,
    author = {Henze, Martin and Matzutt, Roman and Hiller, Jens and M{\"u}hmer, Erik and Ziegeldorf, Jan Henrik and van der Giet, Johannes and Wehrle, Klaus},
    title = {{Practical Data Compliance for Cloud Storage}},
    year = {2017},
    pages = {252-258},
    publisher = {IEEE},
    booktitle = {Proceedings of the 2017 IEEE International Conference on Cloud Engineering (IC2E 2017), Vancouver, BC, Canada},
    ISBN = {978-1-5090-5817-4},
    DOI = {10.1109/IC2E.2017.32},
}