How to enhance privacy within DaaS service composition?

Abstract

The composition of data-as-a-service (DaaS) services is a powerful solution for building value-added applications on top of existing ones. However, privacy concerns are still among the key challenges that keep hampering DaaS composition. Indeed, services may follow different, conflicting privacy specifications with respect to the data they use and provide. In this paper, we propose an approach for the privacy-aware composition of DaaS services. Our approach allows us to specify privacy requirements and policies and verify the compatibility of services involved in a composition. We propose an adaptation protocol that makes it possible to reconcile the privacy specifications of services when incompatibilities arise in a composition. We validate the applicability of our proposal through a set of experiments. © 2007-2012 IEEE.