A risk assessment model for selecting cloud service providers

被引：35

作者：

Cayirci, Erdal ^{[1
]}

Garaga, Alexandr ^{[2
,3
]}

de Oliveira, Anderson Santana ^{[2
]}

Roudier, Yves ^{[3
]}

机构：

[1] Univ Stavanger, Elect & Comp Engn Dept, Stavanger, Norway

[2] SAP Labs France, Mougins, France

[3] Eurecom, Network Secur Team, Biot, France

来源：

JOURNAL OF CLOUD COMPUTING-ADVANCES SYSTEMS AND APPLICATIONS | 2016年 / 5卷

关键词：

Risk assessment; Cloud computing; Security; Privacy;

D O I：

10.1186/s13677-016-0064-x

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

The Cloud Adoption Risk Assessment Model is designed to help cloud customers in assessing the risks that they face by selecting a specific cloud service provider. It evaluates background information obtained from cloud customers and cloud service providers to analyze various risk scenarios. This facilitates decision making an selecting the cloud service provider with the most preferable risk profile based on aggregated risks to security, privacy, and service delivery. Based on this model we developed a prototype using machine learning to automatically analyze the risks of representative cloud service providers from the Cloud Security Alliance Security, Trust & Assurance Registry.

引用

页数：12

共 22 条

[1]

[Anonymous], 2009, TECHNICAL REPORT

[2]

[Anonymous], 2012, TECHNICAL REPORT

[3]

[Anonymous], 2012, NIST SP 800-30. Rev. 1. Guide for Conducting Risk Assessments, DOI DOI 10.6028/NIST.SP.800-30R1

[4]

[Anonymous], 2013, TECHNICAL REPORT

[5]

[Anonymous], 2011, 270052011 ISOIEC

[6]

[Anonymous], 2012, TECHNICAL REPORT

[7]

[Anonymous], 2009, 310102009 ISO ISOIEC

[8]

[Anonymous], 2009, 310002009 ISO

[9]

Busby J, 2013, TECHNICAL REPORT

[10]

Cayirci E, 2014, INT CONF UTIL CLOUD, P908, DOI 10.1109/UCC.2014.148

← 1 2 3 →