Abstract
Managing information security in the cloud is a challenge. Traditional checklist approaches to standards compliance may well provide compliance, but do not guarantee to provide security assurance. The complexity of cloud relationships must be acknowledged and explicitly managed by recognising the implications of self-interest of each party involved. We begin development of a conceptual modelling framework for cloud security assurance that can be used as a starting point for effective continuous security assurance, together with a high level of compliance.
| Original language | English |
|---|---|
| Title of host publication | 2013 IEEE 5th International Conference on Cloud Computing Technology and Science (CloudCom) |
| Publisher | Institute of Electrical and Electronics Engineers (IEEE) |
| Pages | 120-125 |
| Number of pages | 6 |
| Volume | 2 |
| ISBN (Electronic) | 9780769550954 |
| ISBN (Print) | 9781479915484 |
| DOIs | |
| Publication status | Published - 5 Dec 2013 |
| Event | Cloud Com 2013 - University of the West of England Exhibition and Conference Centre, Frenchay Campus, Coldharbour Lane, Bristol, Bristol, United Kingdom Duration: 2 Dec 2013 → 5 Dec 2013 http://cipsijoomla.ux.uis.no/index.php |
Conference
| Conference | Cloud Com 2013 |
|---|---|
| Abbreviated title | CloudCom 2013 |
| Country/Territory | United Kingdom |
| City | Bristol |
| Period | 2/12/13 → 5/12/13 |
| Internet address |
Keywords
- cloud computing
- security
- assurance
- framework
- compliance