The Importance of Proper Measurement for a Cloud Security Assurance Model

被引:2
作者
Duncan, Bob [1 ]
Whittington, Mark [2 ]
机构
[1] Univ Aberdeen, Comp Sci, Aberdeen AB9 1FX, Scotland
[2] Univ Aberdeen, Accounting & Finance, Aberdeen AB9 1FX, Scotland
来源
2015 IEEE 7TH INTERNATIONAL CONFERENCE ON CLOUD COMPUTING TECHNOLOGY AND SCIENCE (CLOUDCOM) | 2015年
关键词
security; privacy; standards; compliance; assurance; audit; measurement; cloud service providers; service level agreements; CORPORATE SUSTAINABILITY; RESILIENCE;
D O I
10.1109/CloudCom.2015.91
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
Defining proper measures for evaluating the effectiveness of an assurance model, which we have developed to ensure cloud security, is vital to ensure the successful implementation and continued running of the model. We need to understand that with security being such an essential component of business processes, responsibility must lie with the board. The board must be responsible for defining their security posture on all aspects of the model, and therefore must also be responsible for defining what the necessary measures should be. Without measurement, there can be no control. However, it will be also be necessary to properly engage with cloud service providers to achieve a more meaningful degree of security for the cloud user.
引用
收藏
页码:517 / 522
页数:6
相关论文
共 35 条
[1]  
[Anonymous], TECH REP
[2]  
[Anonymous], 120053 MITRE MP
[3]  
[Anonymous], 14 IEEE INT C TRUST
[4]  
[Anonymous], WEIS
[5]  
[Anonymous], J BUS ETHICS
[6]  
[Anonymous], 2009, PRINCIPLES ECOSYSTEM
[7]  
[Anonymous], WEIS 2014
[8]  
[Anonymous], 2007, STEWARDSHIP BASED EC
[9]  
[Anonymous], WEIS
[10]  
[Anonymous], WEIS 2013
1234