The University of Southampton
University of Southampton Institutional Repository

A provenance-aware policy language (cProvl) and a data traceability model (cProv) for the Cloud

A provenance-aware policy language (cProvl) and a data traceability model (cProv) for the Cloud
A provenance-aware policy language (cProvl) and a data traceability model (cProv) for the Cloud
Provenance plays a pivotal in tracing the origin of something and determining how and why something had occurred. With the emergence of the cloud and the benefits it encompasses, there has been a rapid proliferation of services being adopted by commercial and government sectors. However, trust and security concerns for such services are on an unprecedented scale. Currently, these services expose very little internal working to their customers; this can cause accountability and compliance issues especially in the event of a fault or error, customers and providers are left to point finger at each other. Provenance-based traceability provides a mean to address part of this problem by being able to capture and query events occurred in the past to understand how and why it took place. However, due to the complexity of the cloud infrastructure, the current provenance models lack the expressibility required to describe the inner-working of a cloud service. For a complete solution, a provenance-aware policy language is also required for operators and users to define policies for compliance purpose. The current policy standards do not cater for such requirement. To address these issues, in this paper we propose a provenance (traceability) model cProv, and a provenance-aware policy language (cProvl) to capture traceability data, and express policies for validating against the model. For implementation, we have extended the XACML3.0 architecture to support provenance, and provided a translator that converts cProvl policy and request into XACML type.
policy language, provenance, cloud, cProvl, cProv, Prov, data traceability, XACML
Ali, Mufajjul
fce73a3f-d5dd-413f-a660-87f8520658f8
Luc, Moreau
033c63dd-3fe9-4040-849f-dfccbe0406f8
Ali, Mufajjul
fce73a3f-d5dd-413f-a660-87f8520658f8
Luc, Moreau
033c63dd-3fe9-4040-849f-dfccbe0406f8

Ali, Mufajjul and Luc, Moreau (2013) A provenance-aware policy language (cProvl) and a data traceability model (cProv) for the Cloud. The 2nd International Symposium on Privacy and Security in Cloud and Social Networks (PriSecCSN 2013) co-located with the International Conference on Cloud and Green Computing (CGC2013).

Record type: Conference or Workshop Item (Paper)

Abstract

Provenance plays a pivotal in tracing the origin of something and determining how and why something had occurred. With the emergence of the cloud and the benefits it encompasses, there has been a rapid proliferation of services being adopted by commercial and government sectors. However, trust and security concerns for such services are on an unprecedented scale. Currently, these services expose very little internal working to their customers; this can cause accountability and compliance issues especially in the event of a fault or error, customers and providers are left to point finger at each other. Provenance-based traceability provides a mean to address part of this problem by being able to capture and query events occurred in the past to understand how and why it took place. However, due to the complexity of the cloud infrastructure, the current provenance models lack the expressibility required to describe the inner-working of a cloud service. For a complete solution, a provenance-aware policy language is also required for operators and users to define policies for compliance purpose. The current policy standards do not cater for such requirement. To address these issues, in this paper we propose a provenance (traceability) model cProv, and a provenance-aware policy language (cProvl) to capture traceability data, and express policies for validating against the model. For implementation, we have extended the XACML3.0 architecture to support provenance, and provided a translator that converts cProvl policy and request into XACML type.

Text
PRISECCSN#7.pdf - Accepted Manuscript
Download (622kB)

More information

Published date: 30 September 2013
Venue - Dates: The 2nd International Symposium on Privacy and Security in Cloud and Social Networks (PriSecCSN 2013) co-located with the International Conference on Cloud and Green Computing (CGC2013), 2013-09-30
Keywords: policy language, provenance, cloud, cProvl, cProv, Prov, data traceability, XACML
Organisations: Electronics & Computer Science

Identifiers

Local EPrints ID: 355953
URI: http://eprints.soton.ac.uk/id/eprint/355953
PURE UUID: d0d1e9de-2326-45b9-8b9f-20928a3f5708
ORCID for Moreau Luc: ORCID iD orcid.org/0000-0002-3494-120X

Catalogue record

Date deposited: 16 Sep 2013 10:28
Last modified: 14 Mar 2024 14:41

Export record

Contributors

Author: Mufajjul Ali
Author: Moreau Luc ORCID iD

Download statistics

Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.

View more statistics

Atom RSS 1.0 RSS 2.0

Contact ePrints Soton: eprints@soton.ac.uk

ePrints Soton supports OAI 2.0 with a base URL of http://eprints.soton.ac.uk/cgi/oai2

This repository has been built using EPrints software, developed at the University of Southampton, but available to everyone to use.

We use cookies to ensure that we give you the best experience on our website. If you continue without changing your settings, we will assume that you are happy to receive cookies on the University of Southampton website.

×