ABSTRACT
In the modern-day world, we are oen required to share our personally identiable information (PII) with other parties in order to establish our identity or to obtain certain types of services. For example, to obtain services from a health-care service provider, we will typically need to share a great deal of PII to allow the health-care provider to arrive at an appropriate diagnosis; the provider may also generate an additional PII through his or her diagnoses and diagnostic test results. When such services are provided through a cloud-based system, there are many benets as well as drawbacks. For example, the personal data are more easily shared with other service providers (such as health-care providers) who need access to the data quickly. However, the user loses control over his or her personal data-the accuracy of the data, the aggregation of the data, what the data are used for, and whom the data are being shared with. e fact that most cloud systems have multiple parties who contribute to the administration and provisioning of the services makes privacy controls quite a bit more challenging in such systems.
