Provenance-based data traceability model and policy enforcement framework for cloud services
Provenance-based data traceability model and policy enforcement framework for cloud services
In the context of software, provenance holds the key to retaining a reproduceable instance of the duration of a service, which can be replayed/reproduced from the beginning. This entails the nature of invocations that took place, how/where the data were created, modified, updated and the user's engagement with the service.
With the emergence of the cloud and the benefits it encompasses, there has been a rapid proliferation of services being developed and adopted by commercial businesses. However, these services expose very little internal workings to their customers, and insufficient means to check for the right working order. This can cause transparency and compliance issues, especially in the event of a fault or violation, customers and providers are left to point finger at each other.
Provenance-based traceability provides a means to address a part of this problem by being able to capture and query events that have occurred in the past to understand how and why it took place. On top of that, provenance-based policies are required to facilitate the validation and enforcement of business level requirements for end-users satisfaction.
This dissertation makes four contributions to the state of the art: i) By defining and implementing an enhanced provenance-based cloud traceability model (cProv), that extends the standardized Prov model to support characteristics related to cloud services. The model is then able to conceptualize the traceability of a running cloud service. ii) By the creation of a provenance-based policy language (cProvl) in order to facilitate the declaration and enforcement of the business level requirements. iii) By developing a traceability framework, that provides client and server-side stacks for integrating service-level traceability and policy-based enforcement of business rules. iv) Finally by the implementation and evaluation of the framework, that leverages on the standardized industry solutions. The framework is then applied to the commercial service: 'ConfidenShare' as a proof of concept.
University of Southampton
Ali, Mufajjul
fce73a3f-d5dd-413f-a660-87f8520658f8
April 2016
Ali, Mufajjul
fce73a3f-d5dd-413f-a660-87f8520658f8
Moreau, Luc
033c63dd-3fe9-4040-849f-dfccbe0406f8
Ali, Mufajjul
(2016)
Provenance-based data traceability model and policy enforcement framework for cloud services.
University of Southampton, ECS, Doctoral Thesis, 231pp.
Record type:
Thesis
(Doctoral)
Abstract
In the context of software, provenance holds the key to retaining a reproduceable instance of the duration of a service, which can be replayed/reproduced from the beginning. This entails the nature of invocations that took place, how/where the data were created, modified, updated and the user's engagement with the service.
With the emergence of the cloud and the benefits it encompasses, there has been a rapid proliferation of services being developed and adopted by commercial businesses. However, these services expose very little internal workings to their customers, and insufficient means to check for the right working order. This can cause transparency and compliance issues, especially in the event of a fault or violation, customers and providers are left to point finger at each other.
Provenance-based traceability provides a means to address a part of this problem by being able to capture and query events that have occurred in the past to understand how and why it took place. On top of that, provenance-based policies are required to facilitate the validation and enforcement of business level requirements for end-users satisfaction.
This dissertation makes four contributions to the state of the art: i) By defining and implementing an enhanced provenance-based cloud traceability model (cProv), that extends the standardized Prov model to support characteristics related to cloud services. The model is then able to conceptualize the traceability of a running cloud service. ii) By the creation of a provenance-based policy language (cProvl) in order to facilitate the declaration and enforcement of the business level requirements. iii) By developing a traceability framework, that provides client and server-side stacks for integrating service-level traceability and policy-based enforcement of business rules. iv) Finally by the implementation and evaluation of the framework, that leverages on the standardized industry solutions. The framework is then applied to the commercial service: 'ConfidenShare' as a proof of concept.
Text
Thesis-camera-version.pdf
- Version of Record
More information
Published date: April 2016
Organisations:
University of Southampton, Electronics & Computer Science
Identifiers
Local EPrints ID: 393423
URI: http://eprints.soton.ac.uk/id/eprint/393423
PURE UUID: abdcf300-f2f0-4cee-9126-6ec65e41d9db
Catalogue record
Date deposited: 26 Apr 2016 04:40
Last modified: 15 Mar 2024 00:01
Export record
Contributors
Author:
Mufajjul Ali
Thesis advisor:
Luc Moreau
Download statistics
Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.
View more statistics