Show simple item record

dc.contributor.authorRios Velasco, Erkuden
dc.contributor.authorIturbe, Eider
dc.contributor.authorLarrucea, Xabier
dc.contributor.authorRak, Massimiliano
dc.contributor.authorMallouli, Wissam
dc.contributor.authorDominiak, Jacek
dc.contributor.authorMuntes, Victor
dc.contributor.authorMatthews, Peter
dc.contributor.authorGonzalez Moctezuma, Luis
dc.date.accessioned2019-02-14T14:13:39Z
dc.date.available2019-02-14T14:13:39Z
dc.date.issued2019
dc.identifier.citationRios Velasco, Erkuden, Eider Iturbe, Xabier Larrucea, Massimiliano Rak, Wissam Mallouli, Jacek Dominiak, Victor Muntes, Peter Matthews, and Luis Gonzalez Moctezuma. “Service Level Agreement-Based GDPR Compliance and Security Assurance in (multi)Cloud-Based Systems.” IET Software (February 1, 2019). doi:10.1049/iet-sen.2018.5293.en
dc.identifier.issn1751-8806en
dc.identifier.urihttp://hdl.handle.net/11556/686
dc.description.abstractCompliance with the new European General Data Protection Regulation (Regulation (EU) 2016/679) and security assurance are currently two major challenges of Cloud-based systems. GDPR compliance implies both privacy and security mechanisms definition, enforcement and control, including evidence collection. This paper presents a novel DevOps framework aimed at supporting Cloud consumers in designing, deploying and operating (multi)Cloud systems that include the necessary privacy and security controls for ensuring transparency to end-users, third parties in service provision (if any) and law enforcement authorities. The framework relies on the risk-driven specification at design time of privacy and security level objectives in the system Service Level Agreement (SLA) and in their continuous monitoring and enforcement at runtime.en
dc.description.sponsorshipThe research leading to these results has received funding from the European Union’s Horizon 2020 research and innovation programme under grant agreement No 644429 and No 780351, MUSA project and ENACT project, respectively. We would also like to acknowledge all the members of the MUSA Consortium and ENACT Consortium for their valuable help.en
dc.language.isoengen
dc.publisherInstitution of Engineering and Technology (IET)en
dc.titleService Level Agreement-based GDPR Compliance and Security assurance in (multi)Cloud-based systemsen
dc.typearticleen
dc.identifier.doi10.1049/iet-sen.2018.5293en
dc.relation.projectIDinfo:eu-repo/grantAgreement/EC/H2020/644429/EU/MUlti-cloud Secure Applications/MUSAen
dc.relation.projectIDinfo:eu-repo/grantAgreement/EC/780351/EU/Trustworthy and Smart Actuation in IoT systems/ENACTen
dc.rights.accessRightsopenAccessen
dc.subject.keywordsEuropean General Data Protection Regulationen
dc.subject.keywordsGDPRen
dc.subject.keywordsCloud-based systemsen
dc.subject.keywordsPrivacyen
dc.subject.keywordsSecurityen
dc.subject.keywordsSLAen
dc.identifier.essn1751-8814en
dc.journal.titleIET Softwareen


Files in this item

Thumbnail

    Show simple item record