Int. J. of Cloud Computing   »   2012 Vol.1, No.2/3

 

 

Title: Accountability services for verifying compliance in the cloud

 

Authors: Jinhui Yao; Shiping Chen; Chen Wang; David Levy; John Zic

 

Addresses:
Information Engineering Laboratory, CSIRO ICT Centre, Marsfield, NSW 2122, Australia; School of Electrical and Information Engineering, University of Sydney, City Road, NSW 2006, Australia.
Information Engineering Laboratory, CSIRO ICT Centre, Marsfield, NSW 2122, Australia.
Information Engineering Laboratory, CSIRO ICT Centre, Marsfield, NSW 2122, Australia.
School of Electrical and Information Engineering, University of Sydney, City Road, NSW 2006, Australia.
Information Engineering Laboratory, CSIRO ICT Centre, Marsfield, NSW 2122, Australia

 

Abstract: The emergence of the cloud has revolutionised the modern day computing. It has provided a cheap and yet reliable outsourcing model for whomever with huge needs for computing resources. And by leveraging service oriented architecture, organisations and companies can wrap their business products as services, to collaborate with others to form business processes. This reinforces the impact of the cloud for that, its enormous computing capacity and network bandwidth make it an ideal platform for collaborative business processes. Within those business processes, each participant is usually an independent entity which may violate the predefined compliance requirements and attempt to avoid the stiff penalty using deceits. Therefore, the mechanism to unarguably verify one's compliance in collaboration is highly critical – the lack of which, will result a chaotic situation where participating entities can act willy-nilly and deny their faults. This paper outlines our approach to enforce strong accountability to address this issue. With accountability, the actions are always linked to the actors with undeniable evidence. We in detail analyse the evidence required to verify different types of compliance and to what extent they can be verified in a provable way. Then we deploy our system with experiment business processes to evaluate its effectiveness.

 

Keywords: accountability; service oriented architecture; SOA; trustworthiness; compliance verification; collaborative business processes; security; cloud computing.

 

DOI: 10.1504/IJCC.2012.046721

 

Int. J. of Cloud Computing, 2012 Vol.1, No.2/3, pp.240 - 260

 

Available online: 03 May 2012

 

 

Editors Full text accessAccess for SubscribersPurchase this articleComment on this article