Cloud Data Auditing Techniques with a Focus on Privacy and Security

Kolhar, Manjur; Abualhaj, Mosleh M.; El-atty, Saied M. Abd

doi:10.1109/msp.2017.16

Cited by 38 publications

(19 citation statements)

References 20 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Technical complexity also makes it difficult to audit a system without perturbing it. Further, there is a risk that sensitive data may be exposed during the audit process itself (Kolhar et al, 2017). To manage this challenge, third party auditors can be given privileged and secured access to private information to assess whether claims about the safety, privacy, and accuracy made by the system developer are valid.…”

Section: Technical Constraintsmentioning

confidence: 99%

“…Sustaining a culture of trust also requires that people who breach ethical and social norms are subject to proportional sanctions (Ellemers et al, 2019 ). By providing avenues for whistle-blowers and promoting a culture of ethical behaviour, EBA also helps strengthen interpersonal accountability within organisations (Koene et al, 2019 ). At the same time, doing the right thing should be made easy.…”

Section: Criteria For Successful Implementationmentioning

confidence: 99%

See 1 more Smart Citation

Ethics-Based Auditing of Automated Decision-Making Systems: Nature, Scope, and Limitations

et al. 2021

View full text Add to dashboard Cite

Important decisions that impact humans lives, livelihoods, and the natural environment are increasingly being automated. Delegating tasks to so-called automated decision-making systems (ADMS) can improve efficiency and enable new solutions. However, these benefits are coupled with ethical challenges. For example, ADMS may produce discriminatory outcomes, violate individual privacy, and undermine human self-determination. New governance mechanisms are thus needed that help organisations design and deploy ADMS in ways that are ethical, while enabling society to reap the full economic and social benefits of automation. In this article, we consider the feasibility and efficacy of ethics-based auditing (EBA) as a governance mechanism that allows organisations to validate claims made about their ADMS. Building on previous work, we define EBA as a structured process whereby an entity’s present or past behaviour is assessed for consistency with relevant principles or norms. We then offer three contributions to the existing literature. First, we provide a theoretical explanation of how EBA can contribute to good governance by promoting procedural regularity and transparency. Second, we propose seven criteria for how to design and implement EBA procedures successfully. Third, we identify and discuss the conceptual, technical, social, economic, organisational, and institutional constraints associated with EBA. We conclude that EBA should be considered an integral component of multifaced approaches to managing the ethical risks posed by ADMS.

show abstract

Section: Technical Constraintsmentioning

confidence: 99%

Section: Criteria For Successful Implementationmentioning

confidence: 99%

Ethics-Based Auditing of Automated Decision-Making Systems: Nature, Scope, and Limitations

et al. 2021

View full text Add to dashboard Cite

show abstract

“…A serious concern was to define whether the Cloud service provider (CSP) fulfills the users ' legal expectations of data integrity [38,39,40], for which there are too many explanations. The first cause was the fear of loss of control over cloud data, so data controllers are no longer able to authenticate their data integrity by conventional methods that are popularly involved in local data processing.…”

Section: Data Integritymentioning

confidence: 99%

Challenges and Issues on the Recent Data Integrity Preserving Techniques in the Multiuser Cloud

Ambika¹,

Moses²

2019

IJCET

View full text Add to dashboard Cite

Over the decade, the usage of data had increased exponentially, which led to the demand for its effective storage and retrieval. The cloud environment has developed to handle that demand with its huge storage space and easy accessibility. However, the open nature of the cloud resulted in the data integrity issues and multiuser cloud enriched it. The other issues like group signature and user revocation took the central part to ensure integrity of data in the cloud. The present study summarizes various techniques that were developed in recent times to address the security issues on data integrity, user revocation, and group signature. To reflect on the novelty of each approach, along with its performance in providing integrity for the cloud data stands as the primary objective of the study. From the extensive study, it was found that the overhead on the computational and communication overhead increase proportionally with an increase in the number of the user during the group signature generation and recurrent user revocation. There was a need for an effective cryptic mechanism with effective cloud storage and recovery of data. Finally, it was suggested to develop a robust framework that can provide enhanced security with reduced overhead and ensure data integrity.

show abstract

“…The authors demanded that their work named SOLID, approach succeed over existing algorithms in terms of makes pan, financial costs and resource competence. M.Kalhar et.al [18] make a review focusing cloud data auditing techniques. Huge quantities of data are accumulated with cloud service providers nowadays.…”

Section: Related Workmentioning

confidence: 99%

An enhanced security tree to secure cloud data

Renu¹,

Veni²

2017

IJET

View full text Add to dashboard Cite

The Cloud computing services and security issues are growing exponentially with time. All the CSPs provide utmost security but the issues still exist. Number of technologies and methods are emerged and futile day by day. In order to overcome this situation, we have also proposed a data storage security system using a binary tree approach. Entire services of the binary tree are provided by a Trusted Third Party (TTP) .TTP is a government or reputed organization which facilitates to protect user data from unauthorized access and disclosure. The security services are designed and implemented by the TTP and are executed at the user side. Data classification, Data Encryption and Data Storage are the three vital stages of the security services. An automated file classifier classify unorganized files into four different categories such as Sensitive, Private, Protected and Public. Applied cryptographic techniques are used for data encryption. File splitting and multiple cloud storage techniques are used for data outsourcing which reduces security risks considerably. This technique offers file protection even when the CSPs compromise.

show abstract

Cloud Data Auditing Techniques with a Focus on Privacy and Security

Cited by 38 publications

References 20 publications

Ethics-Based Auditing of Automated Decision-Making Systems: Nature, Scope, and Limitations

Ethics-Based Auditing of Automated Decision-Making Systems: Nature, Scope, and Limitations

Challenges and Issues on the Recent Data Integrity Preserving Techniques in the Multiuser Cloud

An enhanced security tree to secure cloud data

Contact Info

Product

Resources

About