Risk-Driven Compliant Access Controls for Clouds
There is widespread agreement that Cloud computing has proven cost cutting and agility benefits. However, security and regulatory compliance issues are continuing to challenge the wide acceptance of such technology both from social and commercial stakeholders. An important factor behind this is the fact that Clouds, and in particular public Clouds, are usually deployed and used within broad geographical or even international domains. This implies that the exchange of private and other protected data within the Cloud environment would be governed by multiple jurisdictions. These jurisdictions have a great degree of harmonization; however, they present possible conflicts that are difficult to negotiate at run time.