Privacy penetration testing -- how to establish trust in your cloud provider

C.W. Probst, A.M. Sasse, Wolter Pieters, T. Dimkov, E. Luysterborg, M. Arnaud

    Research output: Chapter in Book/Report/Conference proceedingChapter

    • 7 Citations

    Abstract

    In the age of cloud computing, IT infrastructure becomes virtualised and takes the form of services. This virtualisation results in an increasing de-perimeterisation, where the location of data and computation is irrelevant from a user’s point of view. This irrelevance means that private and institutional users no longer have a concept of where their data is stored, and whether they can trust in cloud providers to protect their data. In this chapter we investigate methods for increasing customers’ trust into cloud providers, and suggest a public penetration- testing agency as an essential component in a trustworthy cloud infrastructure.
    LanguageUndefined
    Title of host publicationEuropean Data Protection: In Good Health?
    EditorsS. Gutwirth, Y. Poullet, P. De Hert, R. Leens
    Place of PublicationLondon
    PublisherSpringer
    Pages251-266
    Number of pages17
    ISBN (Print)978-94-007-2902-5
    DOIs
    StatePublished - 2012

    Publication series

    NameInternational, Foreign and Comparative Law
    PublisherSpringer
    No.XVIII
    VolumeXVIII

    Keywords

    • METIS-285246
    • Cloud computing
    • Trust
    • socio-technical system modelling
    • Privacy
    • Penetration Testing
    • SCS-Cybersecurity
    • EWI-21529

    Cite this

    Probst, C. W., Sasse, A. M., Pieters, W., Dimkov, T., Luysterborg, E., & Arnaud, M. (2012). Privacy penetration testing -- how to establish trust in your cloud provider. In S. Gutwirth, Y. Poullet, P. De Hert, & R. Leens (Eds.), European Data Protection: In Good Health? (pp. 251-266). (International, Foreign and Comparative Law; Vol. XVIII, No. XVIII). London: Springer. DOI: 10.1007/978-94-007-2903-2_12
    Probst, C.W. ; Sasse, A.M. ; Pieters, Wolter ; Dimkov, T. ; Luysterborg, E. ; Arnaud, M./ Privacy penetration testing -- how to establish trust in your cloud provider. European Data Protection: In Good Health?. editor / S. Gutwirth ; Y. Poullet ; P. De Hert ; R. Leens. London : Springer, 2012. pp. 251-266 (International, Foreign and Comparative Law; XVIII).
    @inbook{be7625a4dd2f44f4a2ecd738c3293c7b,
    title = "Privacy penetration testing -- how to establish trust in your cloud provider",
    abstract = "In the age of cloud computing, IT infrastructure becomes virtualised and takes the form of services. This virtualisation results in an increasing de-perimeterisation, where the location of data and computation is irrelevant from a user’s point of view. This irrelevance means that private and institutional users no longer have a concept of where their data is stored, and whether they can trust in cloud providers to protect their data. In this chapter we investigate methods for increasing customers’ trust into cloud providers, and suggest a public penetration- testing agency as an essential component in a trustworthy cloud infrastructure.",
    keywords = "METIS-285246, Cloud computing, Trust, socio-technical system modelling, Privacy, Penetration Testing, SCS-Cybersecurity, EWI-21529",
    author = "C.W. Probst and A.M. Sasse and Wolter Pieters and T. Dimkov and E. Luysterborg and M. Arnaud",
    year = "2012",
    doi = "10.1007/978-94-007-2903-2_12",
    language = "Undefined",
    isbn = "978-94-007-2902-5",
    series = "International, Foreign and Comparative Law",
    publisher = "Springer",
    number = "XVIII",
    pages = "251--266",
    editor = "S. Gutwirth and Y. Poullet and {De Hert}, P. and R. Leens",
    booktitle = "European Data Protection: In Good Health?",

    }

    Probst, CW, Sasse, AM, Pieters, W, Dimkov, T, Luysterborg, E & Arnaud, M 2012, Privacy penetration testing -- how to establish trust in your cloud provider. in S Gutwirth, Y Poullet, P De Hert & R Leens (eds), European Data Protection: In Good Health?. International, Foreign and Comparative Law, no. XVIII, vol. XVIII, Springer, London, pp. 251-266. DOI: 10.1007/978-94-007-2903-2_12

    Privacy penetration testing -- how to establish trust in your cloud provider. / Probst, C.W.; Sasse, A.M.; Pieters, Wolter; Dimkov, T.; Luysterborg, E.; Arnaud, M.

    European Data Protection: In Good Health?. ed. / S. Gutwirth; Y. Poullet; P. De Hert; R. Leens. London : Springer, 2012. p. 251-266 (International, Foreign and Comparative Law; Vol. XVIII, No. XVIII).

    Research output: Chapter in Book/Report/Conference proceedingChapter

    TY - CHAP

    T1 - Privacy penetration testing -- how to establish trust in your cloud provider

    AU - Probst,C.W.

    AU - Sasse,A.M.

    AU - Pieters,Wolter

    AU - Dimkov,T.

    AU - Luysterborg,E.

    AU - Arnaud,M.

    PY - 2012

    Y1 - 2012

    N2 - In the age of cloud computing, IT infrastructure becomes virtualised and takes the form of services. This virtualisation results in an increasing de-perimeterisation, where the location of data and computation is irrelevant from a user’s point of view. This irrelevance means that private and institutional users no longer have a concept of where their data is stored, and whether they can trust in cloud providers to protect their data. In this chapter we investigate methods for increasing customers’ trust into cloud providers, and suggest a public penetration- testing agency as an essential component in a trustworthy cloud infrastructure.

    AB - In the age of cloud computing, IT infrastructure becomes virtualised and takes the form of services. This virtualisation results in an increasing de-perimeterisation, where the location of data and computation is irrelevant from a user’s point of view. This irrelevance means that private and institutional users no longer have a concept of where their data is stored, and whether they can trust in cloud providers to protect their data. In this chapter we investigate methods for increasing customers’ trust into cloud providers, and suggest a public penetration- testing agency as an essential component in a trustworthy cloud infrastructure.

    KW - METIS-285246

    KW - Cloud computing

    KW - Trust

    KW - socio-technical system modelling

    KW - Privacy

    KW - Penetration Testing

    KW - SCS-Cybersecurity

    KW - EWI-21529

    U2 - 10.1007/978-94-007-2903-2_12

    DO - 10.1007/978-94-007-2903-2_12

    M3 - Chapter

    SN - 978-94-007-2902-5

    T3 - International, Foreign and Comparative Law

    SP - 251

    EP - 266

    BT - European Data Protection: In Good Health?

    PB - Springer

    CY - London

    ER -

    Probst CW, Sasse AM, Pieters W, Dimkov T, Luysterborg E, Arnaud M. Privacy penetration testing -- how to establish trust in your cloud provider. In Gutwirth S, Poullet Y, De Hert P, Leens R, editors, European Data Protection: In Good Health?. London: Springer. 2012. p. 251-266. (International, Foreign and Comparative Law; XVIII). Available from, DOI: 10.1007/978-94-007-2903-2_12