a privacy impact assessment tool for cloud computing
play

A Privacy Impact Assessment Tool For Cloud Computing cloudcom 2010 - PowerPoint PPT Presentation

May 01, 2023 •255 likes •407 views

A Privacy Impact Assessment Tool For Cloud Computing cloudcom 2010 David Tancock University of Bristol / HP Labs Bristol - David.Tancock@hp.com Siani Pearson HP Labs Bristol Siani.Pearson@hp.com Andrew Charlesworth University

  1. A Privacy Impact Assessment Tool For Cloud Computing cloudcom 2010 David Tancock – University of Bristol / HP Labs Bristol - David.Tancock@hp.com Siani Pearson – HP Labs Bristol – Siani.Pearson@hp.com Andrew Charlesworth – University of Bristol – a.j.charlesworth@bris.ac.uk

  2. Introduction The presentation will outline and discuss the following aspects: - Privacy Impact Assessments (PIAs) - Privacy and security issues in cloud computing - Tool development - Alternative approaches - Next steps - Conclusion

  3. Privacy Impact Assessments (PIAs) Definition: “A systematic process for identifying and addressing privacy issues in an information system that considers the future consequences for privacy of a current or proposed action” (Bennett, Bayley, Charlesworth, Clarke. 2007) - Predictive / Proactive exercise - Consists of a series of steps - Perceived primarily as a management tool - Why organisations should conduct a PIA? - No agreed international standard - Types of PIAs

  4. Privacy and Security Issues There are many concerns involving privacy and security within cloud computing including: - Personal Identifiable Information (PII) - Theft - Misuse or unauthorised resale of personal data - Loss of organisational trust by consumers - Decrease of privacy rights, obligations and status - Conflicting privacy laws from different jurisdictions

  5. Tool Development - What the PIA tool addresses? - Tool architecture - Knowledge representation

  6. Tool Development - User inputs Example of UK PIA tool - Project Outline form

  7. Tool Development - Questions and answers Example of UK PIA tool - PIA Assessment Questions

  8. Tool Development - Tool outputs Example of UK PIA tool – PIA Report page 2

  9. Tool Development - Cloud deployment

  10. Alternative Approaches - Location register - Cloud storage gateway - Accountability - Obfuscation - Hewlett Packard Privacy Advisor (HPPA) (Nasuni, 2010)

  11. Alternative Approaches - Privacy by Design Cloud computing architecture for privacy-preserving and Cloud computing architecture for privacy-preserving, usable data outsourcing trustworthy, and available data outsourcing (A. Cavoukian. 2010) (A. Cavoukian. 2010)

  12. Next Steps in Development • Analyse further how stakeholder analysis and workflow can be integrated into the tool, and whether there are any aspects of PIAs that cannot be captured by such an approach • Conduct empirical research to obtain the initial set of rules for the KB. • Consider different Artificial Intelligence (AI) methods for the analysis (i.e. the reports and the grading of privacy risks etc.)

  13. Next Steps in Development • Choose a cloud storage gateway provider for our tool. This will be measured by the services they provide and the costs that they charge for this service. • Develop the code using Java (i.e. Java Server Pages (JSP), JavaBeans etc.) technologies. This will involve employing a modular approach from the design phase, and includes building the KB.

  14. Conclusions We are currently developing a PIA tool that can be used in a cloud environment to identify potential privacy risks and compliance. We believe that this generic approach will prove of increasing benefit as cloud service adoption increases.

  15. Q/A

Recommend

Security and Privacy for Cloud Computing Refik Molva Cloud Computing Outsourcing

Security and Privacy for Cloud Computing Refik Molva Cloud Computing Outsourcing

Security and Privacy for Cloud Computing Refik Molva Cloud Computing Outsourcing Storage Computation High availability No maintenance Decreased Costs Elasticity & Flexibility Security and Privacy for Cloud

529 views • 36 slides
Social Impact of Privacy in Cloud Computing Rui Mximo Esteves, Chunming Rong Department of

Social Impact of Privacy in Cloud Computing Rui Mximo Esteves, Chunming Rong Department of

Social Impact of Privacy in Cloud Computing Rui Mximo Esteves, Chunming Rong Department of Electrical and Computer Engineering University of Stavanger Norway About today Social considerations under a philosophical perspective Not a

860 views • 34 slides
Cloud Computing - Starting Points for Privacy and Transparency Ina Schiering Ostfalia

Cloud Computing - Starting Points for Privacy and Transparency Ina Schiering Ostfalia

Cloud Computing - Starting Points for Privacy and Transparency Ina Schiering Ostfalia University of Applied Science Wolfenbttel, Germany IFIP Summerschool: Privacy and Identity Management for Life, Helsingborg, August 2nd, 2010 Cloud

775 views • 43 slides
High Impact Leadership Behaviors Self-Assessment Tool This self-assessment tool is intended to

High Impact Leadership Behaviors Self-Assessment Tool This self-assessment tool is intended to

High Impact Leadership Behaviors Self-Assessment Tool This self-assessment tool is intended to help leaders understand and improve their effectiveness by practicing the high impact behaviors. The questions and statements under each behavior are

176 views • 3 slides
HPC Cloud A tool for research Floris Sluiter Project leader SARA computing & networking

HPC Cloud A tool for research Floris Sluiter Project leader SARA computing & networking

HPC Cloud A tool for research Floris Sluiter Project leader SARA computing & networking services SARA Project involvements HPC Cloud Philosophy HPC Cloud Computing: Self Service Dynamically Scalable Computing Facilities Cloud

679 views • 22 slides
CS573 Data privacy and security in the cloud in the cloud Slide credits: Ragib Hasan, Johns

CS573 Data privacy and security in the cloud in the cloud Slide credits: Ragib Hasan, Johns

CS573 Data privacy and security in the cloud in the cloud Slide credits: Ragib Hasan, Johns Hopkins University What is Cloud Computing ? Lets hear from the experts 2 What is Cloud Computing ? The infinite wisdom of the crowds (via

709 views • 38 slides
Research in an Open Cloud Exchange CLOUD COMPUTING IS HAVING A DRAMATIC IMPACT On-demand

Research in an Open Cloud Exchange CLOUD COMPUTING IS HAVING A DRAMATIC IMPACT On-demand

Research in an Open Cloud Exchange CLOUD COMPUTING IS HAVING A DRAMATIC IMPACT On-demand access Economies of scale All compute/storage will move to the cloud? Todays IaaS clouds One company responsible for implementing and

1.11k views • 65 slides
Secure Outsourcing Computation Li Xiong Outline Cloud computing Computing on encrypted

Secure Outsourcing Computation Li Xiong Outline Cloud computing Computing on encrypted

CS573 Data Privacy and Security Secure Outsourcing Computation Li Xiong Outline Cloud computing Computing on encrypted data Homomorphic encryption What is Cloud Computing ? Cloud computing Type of computing that relies on sharing

1.29k views • 62 slides
Privacy Issues in Cloud computing Zeeshan Ali Shah System administrator PhD researcher KTH PDC

Privacy Issues in Cloud computing Zeeshan Ali Shah System administrator PhD researcher KTH PDC

Privacy Issues in Cloud computing Zeeshan Ali Shah System administrator PhD researcher KTH PDC Center for High Performance Computing W-Sunday, October 28, 12 Agenda Zeeshan Ali Shah Introduc5on to Cloud compu5ng

355 views • 18 slides
Cloud Computing & Cloud Models Cloud Models Topics Defining cloud computing

Cloud Computing & Cloud Models Cloud Models Topics Defining cloud computing

Cloud Computing & Cloud Models Cloud Models Topics Defining cloud computing Understanding: Distributed Application Design Resource Management Automation Virtualized Computing Environments High-performance Computing

1.02k views • 49 slides
Cloud Computing - the basics Rachel Dixon Privacy and Data Protection Deputy Commissioner Office

Cloud Computing - the basics Rachel Dixon Privacy and Data Protection Deputy Commissioner Office

Cloud Computing - the basics Rachel Dixon Privacy and Data Protection Deputy Commissioner Office of the Victorian Information Commission Victorian Privacy Network Meeting State Library of Victoria 9 October 2019 Freedom of Information | Privacy

398 views • 26 slides
Security & Privacy Issues in Mobile Cloud Computing Manmohan Chaturvedi ,1 , Sapna Malik,

Security & Privacy Issues in Mobile Cloud Computing Manmohan Chaturvedi ,1 , Sapna Malik,

Security & Privacy Issues in Mobile Cloud Computing Manmohan Chaturvedi ,1 , Sapna Malik, Preeti Aggarwal and Shilpa Bahl Ansal University, Gurgaon- 122011, India 1 mmchaturvedi@ansaluniversity.edu.in Indian Context The potential uptake

1.27k views • 28 slides
The MNM-CloudLab -- Ideas, Concepts & Implemenation 17.7. 22.7. 2011 Nils gentschen Felde

The MNM-CloudLab -- Ideas, Concepts & Implemenation 17.7. 22.7. 2011 Nils gentschen Felde

DEUTSCH-FRANZSISCHE SOMMERUNIVERSITT UNIVERSIT DT FRANCO-ALLEMANDE FR NACHWUCHSWISSENSCHAFTLER 2011 POUR JEUNES CHERCHEURS 2011 CLOUD COMPUTING : CLOUD COMPUTING : CLOUD COMPUTING : CLOUD COMPUTING : DFIS ET OPPORTUNITS

965 views • 50 slides
What is the Cloud? Simply put, Cloud Computing is the delivery of computing services,

What is the Cloud? Simply put, Cloud Computing is the delivery of computing services,

What is the Cloud? Simply put, Cloud Computing is the delivery of computing services, including Servers, Storage, Databases, Networking, Software, Analytics and Intelligence over the Internet (The Cloud) to offer faster innovation,

338 views • 13 slides
Session 5b Privacy, Data Security and Legal Considerations in Software as a Service and Cloud

Session 5b Privacy, Data Security and Legal Considerations in Software as a Service and Cloud

Session 5b Privacy, Data Security and Legal Considerations in Software as a Service and Cloud Computing Services for Educational Institutions Presented by: Cristina Blanton Erin Fonte Associate Systemwide Compliance and Member, Privacy

310 views • 28 slides
CLOUD COMPUTING Overview of Use, Benefits, and Risks of Commercial Cloud Computing Commercial

CLOUD COMPUTING Overview of Use, Benefits, and Risks of Commercial Cloud Computing Commercial

CLOUD COMPUTING Overview of Use, Benefits, and Risks of Commercial Cloud Computing Commercial Cloud Computing PRESENTED TO HOUSE COMMITTEE ON GOVERNMENT TRANSPARENCY & OPERATION LEGISLATIVE BUDGET BOARD STAFF April 5, 2016 Statement of

373 views • 8 slides
Cloud Computing Tom Hendrickx RESEARCH QUESTION Define Cloud Computing in context of the higher

Cloud Computing Tom Hendrickx RESEARCH QUESTION Define Cloud Computing in context of the higher

Cloud Computing Tom Hendrickx RESEARCH QUESTION Define Cloud Computing in context of the higher education and research community in general and of an NREN in specific. CLOUD COMPUTING SaaS PaaS STaaS IaaS Utility GRID computing

458 views • 9 slides
Getting Started with Cloud Computing Niels Olof Bouvin 1 Overview What is Cloud Computing?

Getting Started with Cloud Computing Niels Olof Bouvin 1 Overview What is Cloud Computing?

Getting Started with Cloud Computing Niels Olof Bouvin 1 Overview What is Cloud Computing? Hosting Domain names Secure communication 2 The Cloud? Not just marketing-speak for someone elses computer (though it is that too ) Cloud

1k views • 36 slides
Cloud Computing and Cloud Storage By: Maurice Kelly History of Internet and Cloud Computing

Cloud Computing and Cloud Storage By: Maurice Kelly History of Internet and Cloud Computing

Cloud Computing and Cloud Storage By: Maurice Kelly History of Internet and Cloud Computing Internet began in the 1950s Internet has been quite revolutoinary due to its lightning fast communication privelages and data sharing. Cloud

378 views • 6 slides
Privacy-supporting cloud-based conference systems: protocol and verification Myrto Arapinis,

Privacy-supporting cloud-based conference systems: protocol and verification Myrto Arapinis,

Privacy-supporting cloud-based conference systems: protocol and verification Myrto Arapinis, Sergiu Bursuc, Mark Ryan School of Computer Science, University of Birmingham Security of cloud computing Does user have to trust the service provider?

589 views • 16 slides
MESSAGING FOR THE CLOUD with and Hadrian Zbarcea & Jamie Goodyear Cloud Computing

MESSAGING FOR THE CLOUD with and Hadrian Zbarcea & Jamie Goodyear Cloud Computing

MESSAGING FOR THE CLOUD with and Hadrian Zbarcea & Jamie Goodyear Cloud Computing "Cloud computing is a model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources (e.g.,

707 views • 31 slides
PRISMACLOUD Privacy and Security Maintaining Services in the Cloud Thomas Loruenser AIT Austrian

PRISMACLOUD Privacy and Security Maintaining Services in the Cloud Thomas Loruenser AIT Austrian

PRISMACLOUD Privacy and Security Maintaining Services in the Cloud Thomas Loruenser AIT Austrian Institute of Technology GmbH FOC2015 Vienna / 17.06.2015 Challenges for Future ICT Systems Cloud computing will be at the heart of future ICT

426 views • 17 slides
Linux Containers Drive P2P Social Cloud Computing By Alex Karasulu Social cloud computing ,

Linux Containers Drive P2P Social Cloud Computing By Alex Karasulu Social cloud computing ,

Linux Containers Drive P2P Social Cloud Computing By Alex Karasulu Social cloud computing , generalizes cloud computing to include the sharing, bartering and renting of computing resources across peers whose owners and operators are verified

641 views • 31 slides
Spatial Cloud Computing how could geographers use and help to shape cloud computing? Chaowei Phil

Spatial Cloud Computing how could geographers use and help to shape cloud computing? Chaowei Phil

Spatial Cloud Computing how could geographers use and help to shape cloud computing? Chaowei Phil Yang, Co-Director Center for Intelligent Spatial Computing Associate Professor, Geography and GeoInformation Science George Mason Univ., Fairfax,

513 views • 7 slides

More recommend