A Cloud Security RiskManagement Strategy

被引:7
作者
Choo, Kim-Kwang Raymond [1 ]
机构
[1] Univ South Australia, Sch Informa Technol & Math Sci, Adelaide, SA, Australia
来源
IEEE CLOUD COMPUTING | 2014年 / 1卷 / 02期
关键词
cloud; law; risk management; security;
D O I
10.1109/MCC.2014.27
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Given the threat of security breaches, to both cloud service providers and organizational cloud service users, cloud security and privacy are growing public policy concerns as well a salient area of inquiry for researchers. To ensure organizational competitiveness, cloud service providers and organizational cloud service users must make detailed preparations to act against cyberthreats before they occur, and to recover from malicious cyberactivities when such threats succeed. A cloud security risk-management strategy should be a dynamic document that's regularly reviewed by stakeholders, and should include policies and objectives that align with the organization's needs. © 2014 IEEE.
引用
收藏
页码:52 / 56
页数:5
相关论文
共 22 条
[1]   The economics of information security [J].
Anderson, Ross ;
Moore, Tyler .
SCIENCE, 2006, 314 (5799) :610-613
[2]  
[Anonymous], 2011, NIST SPECIAL PUBLICA, P800
[3]  
[Anonymous], ENG
[4]  
[Anonymous], 2013, NIST SP, P800
[5]  
[Anonymous], 2006, TECHNOLOGY
[6]  
Australian Signals Directorate, 2014, AUSTR SIGNALS DIRECT
[7]   Insurability of Cyber Risk: An Empirical Analysis [J].
Biener, Christian ;
Eling, Martin ;
Wirfs, Jan Hendrik .
GENEVA PAPERS ON RISK AND INSURANCE-ISSUES AND PRACTICE, 2015, 40 (01) :131-158
[8]  
Choo K.-K.R., 2014, ICTS MILLENNIUM DEV, P81, DOI DOI 10.1007/978-1-4899-7439-6_6
[9]   Legal Issues in the Cloud [J].
Choo, Kim-Kwang Raymond .
IEEE CLOUD COMPUTING, 2014, 1 (01) :94-96
[10]   National risk registers: Security scientism and the propagation of permanent insecurity [J].
Hagmann, Jonas ;
Cavelty, Myriam Dunn .
SECURITY DIALOGUE, 2012, 43 (01) :79-96
123