3                                                       XaaS






















              Figure 7-5 – Authorization and security policy management functional component extended for BDaaS

            7.3.2.1    Security and privacy management functional component
            The security and privacy management functional component is responsible for managing data provenance,
            personal information in data and user access authority. This functional component aims to avoid data being
            collected, stored by or disclosed to those who are not appropriate.
            This functional component provides:
            –       the capability to manage identification and authorization so that only authenticated and authorized
                    users shall access the data;
            –       methods to protect the privacy of confidential data and sensitive data. For example, this function
                    supports data desensitization to protect the sensitive data.
                    NOTE  1  –  Confidential  data  refers  to  provide  for  protection  of  data  from  unauthorized  disclosure.
                    (see [b-ITU-T X.509]).
                    NOTE  2  –  Sensitive  data  refers  to  personally  identifiable  information  or  other  sensitive  information
                    which is collected, stored, used, and finally destroyed or deleted.

            7.3.3   Operational support systems functional components
            The operational support system functional components are extended for BDaaS (see Figure 7-6) with the
            following functional components:
            –       data life-cycle monitoring functional component (see clause 7.3.3.1);
            –       data policy management functional component (see clause 7.3.3.2);
            –       data catalogue functional component (see clause 7.3.3.3);

            –       resource orchestration functional component for Big data (7.3.3.4).



























            718