Monitoring and Checking Privacy Policies of Cloud Services Based on Models

  • Eric Schmieders
Conference paper
Part of the Lecture Notes in Computer Science book series (LNCS, volume 8954)


Data geo-location policies constrain the geographical locations at which personal data may be stored or processed. Data storage and processing locations are dynamically changed by cloud elasticity that migrates and replicates cloud services across data centers. Thus, cloud elasticity as well as data transfers of interacting services may re-locate data, which potentially violates data geo-location policies. To detect these violations, we develop a policy checking approach based on runtime models. We examine monitoring and model updating mechanisms for reflecting service composition and deployment changes caused by elasticity. Based on the updated runtime model we derive potential data transfers and check them against policies. Initial results indicate the effectiveness and high-performance of our approach.


Privacy Cloud platform management Decentralized cloud platform architectures Runtime verification Data-geo-location 



This work was partially supported by the DFG (German Research Foundation) under the Priority Programme “SPP1593: Design For Future – Managed Software Evolution” (grant PO 607/3-1).


  1. 1.
    Comparative analysis of access control systems on cloud. In: International Conference on Software Engineering, Artificial Intelligence, Networking and Parallel Distributed ComputingGoogle Scholar
  2. 2.
    Aceto, G., Botta, A., de Donato, W., Pescap, A.: Cloud monitoring: a survey. Comput. Netw. 57(9), 2093–2115 (2013)CrossRefGoogle Scholar
  3. 3.
    Brosig, F., Huber, N., Kounev, S.: Automated extraction of architecture-level performance models of distributed component-based systems. In: 26th IEEE/ACM International Conference on Automated Software Engineering (ASE) (2011)Google Scholar
  4. 4.
    Copil, G., Moldovan, D., Truong, H.-L., Dustdar, S.: Multi-level elasticity control of cloud services. In: Basu, S., Pautasso, C., Zhang, L., Fu, X. (eds.) ICSOC 2013. LNCS, vol. 8274, pp. 429–436. Springer, Heidelberg (2013) CrossRefGoogle Scholar
  5. 5.
    Ehrig, H., Ermel, C., Runge, O., Bucchiarone, A., Pelliccione, P.: Formal analysis and verification of self-healing systems. In: Rosenblum, D.S., Taentzer, G. (eds.) FASE 2010. LNCS, vol. 6013, pp. 139–153. Springer, Heidelberg (2010) CrossRefGoogle Scholar
  6. 6.
    Epifani, I., Ghezzi, C., Mirandola, R., Tamburrelli, G.: Model evolution by run-time parameter adaptation. In: 31st ICSE (2009)Google Scholar
  7. 7.
    Jung, R., Heinrich, R., Schmieders, E.: Model-driven instrumentation with kieker and palladio to forecast dynamic applications. In: Symposium on Software Performance: Joint Kieker/Palladio Days 2013. CEUR (2013)Google Scholar
  8. 8.
    von Massow, R., van Hoorn, A., Hasselbring, W.: Performance simulation of runtime reconfigurable component-based software architectures. In: Crnkovic, I., Gruhn, V., Book, M. (eds.) ECSA 2011. LNCS, vol. 6903, pp. 43–58. Springer, Heidelberg (2011) CrossRefGoogle Scholar
  9. 9.
    Park, S., Chung, S.: Privacy-preserving attribute distribution mechanism for access control in a grid. In: 21st International Conference on Tools with Artificial Intelligence, ICTAI 2009 (2009)Google Scholar
  10. 10.
    Pernici, B.: Methodologies for design of service-based systems. In: Nurcan, S., Salinesi, C., Souveyet, C., Ralyt, J. (eds.) Intentional Perspectives on Information Systems Engineering, pp. 307–318. Springer, Heidelberg (2010)CrossRefGoogle Scholar
  11. 11.
    Ramirez, A.J., Cheng, B.H.C.: Automatic derivation of utility functions for monitoring software requirements. In: Whittle, J., Clark, T., Kühne, T. (eds.) MODELS 2011. LNCS, vol. 6981, pp. 501–516. Springer, Heidelberg (2011) CrossRefGoogle Scholar
  12. 12.
    Schmieders, E., Metzger, A.: Preventing performance violations of service compositions using assumption-based run-time verification. In: Abramowicz, W., Llorente, I.M., Surridge, M., Zisman, A., Vayssière, J. (eds.) ServiceWave 2011. LNCS, vol. 6994, pp. 194–205. Springer, Heidelberg (2011) CrossRefGoogle Scholar
  13. 13.
    Schmieders, E., Metzger, A., Pohl, K.: A runtime model approach for data geo-location checks of cloud services. In: Franch, X., Ghose, A.K., Lewis, G.A., Bhiri, S. (eds.) ICSOC 2014. LNCS, vol. 8831, pp. 306–320. Springer, Heidelberg (2014) CrossRefGoogle Scholar
  14. 14.
    Suleiman, B., Venugopal, S.: Modeling performance of elasticity rules for cloud-based applications. In: 2013 17th IEEE International Enterprise Distributed Object Computing Conference (EDOC), September 2013Google Scholar
  15. 15.
    Wu, E., Diao, Y., Rizvi, S.: High-performance complex event processing over streams. In: Proceedings of the 2006 ACM SIGMOD International Conference on Management of Data, SIGMOD 2006, pp. 407–418. ACM, New York (2006)Google Scholar

Copyright information

© Springer International Publishing Switzerland 2015

Authors and Affiliations

  1. 1.paluno (The Ruhr Institute for Software Technology)University of Duisburg-EssenEssenGermany

Personalised recommendations