{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,3]],"date-time":"2026-06-03T17:12:44Z","timestamp":1780506764606,"version":"3.54.1"},"reference-count":86,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","license":[{"start":{"date-parts":[[2020,1,1]],"date-time":"2020-01-01T00:00:00Z","timestamp":1577836800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/legalcode"},{"start":{"date-parts":[[2020,1,1]],"date-time":"2020-01-01T00:00:00Z","timestamp":1577836800000},"content-version":"am","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/legalcode"}],"funder":[{"name":"DoD Supplement to NSF Phase I Industry-University Cooperative Research Centers (IUCRC) UMBC: Center for Accelerated Real-time Analytics","award":["1747724"],"award-info":[{"award-number":["1747724"]}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Access"],"published-print":{"date-parts":[[2020]]},"DOI":"10.1109\/access.2020.3008964","type":"journal-article","created":{"date-parts":[[2020,7,13]],"date-time":"2020-07-13T21:54:01Z","timestamp":1594677241000},"page":"148541-148555","source":"Crossref","is-referenced-by-count":41,"title":["An Integrated Knowledge Graph to Automate Cloud Data Compliance"],"prefix":"10.1109","volume":"8","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-6354-1686","authenticated-orcid":false,"given":"Karuna Pande","family":"Joshi","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-8881-3369","authenticated-orcid":false,"given":"Lavanya","family":"Elluri","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Ankur","family":"Nagar","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"263","reference":[{"key":"ref73","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-87877-3_13"},{"key":"ref72","doi-asserted-by":"publisher","DOI":"10.1109\/RE.2006.68"},{"key":"ref71","doi-asserted-by":"publisher","DOI":"10.1007\/3-540-45486-1_4"},{"key":"ref70","year":"2018","journal-title":"Apachejenafuseki Server"},{"key":"ref76","author":"calver","year":"2018","journal-title":"How The PCI DSS Can Help You Meet The Requirements Of The GDPR"},{"key":"ref77","author":"jones","year":"2018","journal-title":"4 Ways to Use PCI DSS to Achieve GDPR Compliance"},{"key":"ref74","author":"kagal","year":"2004","journal-title":"Agent Communication International Workshop on Agent Communication"},{"key":"ref39","year":"2018","journal-title":"PCI DSS"},{"key":"ref75","year":"2018","journal-title":"GDPR and PCI DSS HOW They Differ How They&#x2019;Re Similar"},{"key":"ref38","first-page":"1","article-title":"A semantically rich knowledge representation of PCI DSS for cloud services","author":"nagar","year":"2018","journal-title":"Proc 6TH Int IBM CLOUD Acad Conf"},{"key":"ref78","year":"2019","journal-title":"General Data Protection Regulation (GDPR)&#x2014;FINAL TEXT NEATLY ARRANGED"},{"key":"ref79","year":"0","journal-title":"Cloud Security Alliance Releases Code of Conduct for GDPR Compliance"},{"key":"ref33","year":"2012","journal-title":"Cloud Auditing Data Federation"},{"key":"ref32","year":"2015","journal-title":"International Standard ISO\/IEC"},{"key":"ref31","year":"0","journal-title":"Overview of OASIS SAML v2"},{"key":"ref30","year":"0","journal-title":"Sarbanes-Oxley Act"},{"key":"ref37","year":"2014","journal-title":"List OF Cloud Providers"},{"key":"ref36","year":"2012","journal-title":"MPAA entertainment content security and protection"},{"key":"ref35","year":"2003","journal-title":"Training and Awareness Madri"},{"key":"ref34","year":"2003","journal-title":"For Security Training"},{"key":"ref60","year":"0","journal-title":"Computer Security Incident Handling Guide"},{"key":"ref62","year":"2018","journal-title":"eBay"},{"key":"ref61","doi-asserted-by":"publisher","DOI":"10.1109\/CLOUD.2015.157"},{"key":"ref63","year":"2018","journal-title":"General Data Protection Regulation (GDPR)&#x2014;FINAL TEXT NEATLY ARRANGED"},{"key":"ref28","year":"2010","journal-title":"Recommended Security Controls for Federal Information Systems and Organizations"},{"key":"ref64","year":"2016","journal-title":"Payment Card Industry (PCI) Data Security Standard"},{"key":"ref27","year":"2011","journal-title":"Security requirement for Cryptographic Modules"},{"key":"ref65","year":"2018","journal-title":"GDPR Resource Center"},{"key":"ref66","year":"2018","journal-title":"Additional Resources About The GDPR"},{"key":"ref29","year":"2015","journal-title":"EDRM-PSRRM Privacy and Security risk reduction model"},{"key":"ref67","year":"2015","journal-title":"Strategic Planning Using Cobit"},{"key":"ref68","year":"2015","journal-title":"DIACAP\/FISMA"},{"key":"ref69","article-title":"SP 800-100. Information security handbook: A guide for managers","author":"bowen","year":"2006"},{"key":"ref2","first-page":"8","article-title":"Cloud security alliance warns providers of&#x2019; the notorious nine&#x2019; cloud computing top threats in 2013","volume":"2013","author":"alliance","year":"2013","journal-title":"Threats Working Group Notorious Nine Cloud Computing Threats"},{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1109\/TSC.2012.41"},{"key":"ref20","year":"2001","journal-title":"Introduction"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1007\/s10458-006-0013-z"},{"key":"ref21","year":"2001","journal-title":"Information Security Management"},{"key":"ref24","year":"2003","journal-title":"Summary of the HIPAA Privacy Rule"},{"key":"ref23","year":"2015","journal-title":"Content Protection and Security (CPS)"},{"key":"ref26","year":"2014","journal-title":"Licence for Export of Defense Articles"},{"key":"ref25","year":"2017","journal-title":"Information Security"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.1109\/SCC.2009.84"},{"key":"ref51","year":"2014","journal-title":"Cloud Security Alliance"},{"key":"ref59","doi-asserted-by":"publisher","DOI":"10.17487\/rfc6749"},{"key":"ref58","year":"2009","journal-title":"Security Guidance for Critical Areas of Focus in Cloud Computing V2 1"},{"key":"ref57","year":"2018","journal-title":"WhatsApp Legal Info"},{"key":"ref56","doi-asserted-by":"publisher","DOI":"10.4018\/jaci.2011010102"},{"key":"ref55","first-page":"179","article-title":"Cloud computing security architecture","author":"krutz","year":"2010","journal-title":"Cloud Security A Comprehensive Guide to Secure Cloud Computing"},{"key":"ref54","doi-asserted-by":"publisher","DOI":"10.6028\/NIST.SP.800-145"},{"key":"ref53","year":"2006","journal-title":"NIST Special Publication 800-63 Version 1 0 2"},{"key":"ref52","year":"2014","journal-title":"Int Organization Standard"},{"key":"ref10","first-page":"8","article-title":"Triplet extraction from sentences","author":"rusu","year":"2007","journal-title":"Proc 10th Int Inf Soc"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1016\/j.artint.2005.03.001"},{"key":"ref40","year":"2015","journal-title":"NIST"},{"key":"ref12","author":"hendre","year":"2014","journal-title":"Cloud Security and Complianceontology"},{"key":"ref13","year":"2010","journal-title":"SPECIFICATION V1 1 0"},{"key":"ref14","first-page":"1","article-title":"Open cloud computing interface-infrastructure","author":"metsch","year":"2010","journal-title":"Proc OCC"},{"key":"ref15","year":"2014","journal-title":"CSA Security Guidance"},{"key":"ref82","year":"2018","journal-title":"SEEING THE FOREST FOR THE TREES"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.6028\/NIST.SP.800-145"},{"key":"ref81","year":"2018","journal-title":"Modal Logic"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1109\/IC2E.2015.63"},{"key":"ref84","year":"2019","journal-title":"OWL Web Ontology Language"},{"key":"ref18","year":"2014","journal-title":"Application Security and Development STIG"},{"key":"ref83","year":"2019","journal-title":"Resource description framework (RDF)"},{"key":"ref19","first-page":"120","article-title":"Modeling communicative behavior using permissions and obligations","author":"kagal","year":"2004","journal-title":"Proc Int Workshop Agent Commun"},{"key":"ref80","year":"2017","journal-title":"Who is the Data Processor and What are its Responsibilities under the Gdpr"},{"key":"ref4","year":"2018","journal-title":"Rackspace Security Management"},{"key":"ref3","year":"2013","journal-title":"Security at Scale Governance in AWS"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.6028\/NIST.SP.500-292"},{"key":"ref5","year":"2012","journal-title":"Google Apps to Offer Additional Compliance Options For Eu Data Protection"},{"key":"ref85","year":"2020","journal-title":"PURL"},{"key":"ref8","year":"2013","journal-title":"The SSAE16 Auditing Standard"},{"key":"ref86","year":"2020","journal-title":"PURL"},{"key":"ref7","author":"watkins","year":"2013","journal-title":"An Introduction To Information Security and ISO"},{"key":"ref49","doi-asserted-by":"publisher","DOI":"10.1109\/SERVICES.2018.00036"},{"key":"ref9","year":"2015","journal-title":"About Fedramp"},{"key":"ref46","year":"2018","journal-title":"General Data Protection Regulation"},{"key":"ref45","year":"2018","journal-title":"Semantic Web Definition"},{"key":"ref48","year":"2018","journal-title":"Compliance|How Google Complies With Data Protection LAWS"},{"key":"ref47","year":"2018","journal-title":"Anon"},{"key":"ref42","first-page":"2011","article-title":"Access control in cloud computing environment","volume":"7","author":"khan","year":"2012","journal-title":"J Eng Appl Sci"},{"key":"ref41","author":"mather","year":"2009","journal-title":"Cloud Security and Privacy An Enterprise Perspective on Risks and Compliance"},{"key":"ref44","doi-asserted-by":"publisher","DOI":"10.1109\/BigData.2018.8622236"},{"key":"ref43","year":"2018","journal-title":"Change History For Microsoft Privacy Statement&#x2014;Microsoft Privacy"}],"container-title":["IEEE Access"],"original-title":[],"link":[{"URL":"https:\/\/ieeexplore.ieee.org\/ielam\/6287639\/8948470\/9139461-aam.pdf","content-type":"application\/pdf","content-version":"am","intended-application":"syndication"},{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/6287639\/8948470\/09139461.pdf?arnumber=9139461","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,4,8]],"date-time":"2022-04-08T18:53:35Z","timestamp":1649444015000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/9139461\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020]]},"references-count":86,"URL":"https:\/\/doi.org\/10.1109\/access.2020.3008964","relation":{},"ISSN":["2169-3536"],"issn-type":[{"value":"2169-3536","type":"electronic"}],"subject":[],"published":{"date-parts":[[2020]]}}}