Decentralised Runtime Monitoring for Access Control Systems in Cloud Federations
Md Sadek Ferdous, Andrea Margheri, Federica Paci, Mu Yang and Vladimiro Sassone
University of Southampton, University of Southampton, University of Southampton, University of Southampton

Cloud federation is an emergent cloud-computing paradigm where partner organisations share data and services hosted on their own cloud platforms. In this context, it is crucial to enforce access control policies that satisfy data protection and privacy requirements of partner organisations. However, due to the distributed nature of cloud federations, the access control system alone does not guarantee that its deployed components cannot be circumvented while processing access requests. In order to promote accountability and reliability of a distributed access control system, we present a decentralised runtime monitoring architecture based on blockchain technology.