Developing a Framework of Comprehensive Criteria for Privacy Protections

Tian Wang, Carol Mullins Hayes, Masooda Bashir

Research output: Chapter in Book/Report/Conference proceedingConference contribution


Cloud computing holds the promise of democratizing access to many computer resources, such as software, by effectively outsourcing computing tasks. However, this raises a variety of security and privacy concerns. Researchers and professionals must maintain security and privacy protections when managing data and information in cloud environments. While several security-related strategies and protections have already been established, there is still no comprehensive set of controls or criteria that specifically addresses privacy protection in the cloud. In this paper, we propose an all-encompassing privacy framework for cloud computing: the Comprehensive Criteria for Privacy Protections (C2P2) framework. The C2P2 framework was developed through qualitative analysis and evaluation of ten major existing privacy-related documents. This paper aims to present our initial and novel synthesis of the C2P2 framework, for which we found 107 unique privacy criteria across thirteen categories. This is the first assessment of its kind for the current privacy-related frameworks and serves as the first step towards establishing a comprehensive set of privacy protection criteria in cloud computing. We believe this framework provides an essential roadmap towards an inclusive privacy standard that information researchers and professionals can use to build controls and certifications.

Original languageEnglish (US)
Title of host publicationAdvances in Information and Communication - Proceedings of the 2022 Future of Information and Communication Conference, FICC
EditorsKohei Arai
Number of pages14
ISBN (Print)9783030980146
StatePublished - 2022
EventFuture of Information and Communication Conference, FICC 2022 - Virtual, Online
Duration: Mar 3 2022Mar 4 2022

Publication series

NameLecture Notes in Networks and Systems
Volume439 LNNS
ISSN (Print)2367-3370
ISSN (Electronic)2367-3389


ConferenceFuture of Information and Communication Conference, FICC 2022
CityVirtual, Online


  • Cloud computing
  • Information privacy
  • Privacy framework

ASJC Scopus subject areas

  • Control and Systems Engineering
  • Signal Processing
  • Computer Networks and Communications


Dive into the research topics of 'Developing a Framework of Comprehensive Criteria for Privacy Protections'. Together they form a unique fingerprint.

Cite this