The Importance of Proper Measurement for a Cloud Security Assurance Model

Bob Duncan; Mark Whittington

doi:10.1109/CloudCom.2015.91

The Importance of Proper Measurement for a Cloud Security Assurance Model

Bob Duncan, Mark Whittington

Research output: Chapter in Book/Report/Conference proceeding › Published conference contribution

5 Citations (Scopus)

8 Downloads (Pure)

Abstract

Defining proper measures for evaluating the effectiveness of an assurance model, which we have developed to ensure cloud security, is vital to ensure the successful implementation and continued running of the model. We need to understand that with security being such an essential component of business processes, responsibility must lie with the board. The board must be responsible for defining their security posture on all aspects of the model, and therefore must also be responsible for defining what the necessary measures should be. Without measurement, there can be no control. However, it will be also be necessary to properly engage with cloud service providers to achieve a more meaningful degree of security for the cloud user.

Original language	English
Title of host publication	2015 IEEE 7th International Conference on Cloud Computing Technology and Science (CloudCom)
Publisher	Institute of Electrical and Electronics Engineers (IEEE)
Pages	517-522
Number of pages	6
ISBN (Electronic)	978-1-4673-9560-1
ISBN (Print)	978-1-4673-9561-8
DOIs	https://doi.org/10.1109/CloudCom.2015.91
Publication status	Published - 30 Nov 2015
Event	2015 IEEE 7th International Conference on Cloud Computing Technology and Science (CloudCom) - UBC Robson Square Conference Centre, 800 Robson St, Vancouver, BC, Canada, Vancouver, Canada Duration: 30 Nov 2015 → 3 Dec 2015 http://cipsijoomla.ux.uis.no/cloudcom2015/

Conference

Conference	2015 IEEE 7th International Conference on Cloud Computing Technology and Science (CloudCom)
Abbreviated title	CloudCom 2015
Country/Territory	Canada
City	Vancouver
Period	30/11/15 → 3/12/15
Internet address	http://cipsijoomla.ux.uis.no/cloudcom2015/

Keywords

security
privacy
standards
compliance
audit
measurement
cloud service providers
service level agreements
assurance

Access to Document

10.1109/CloudCom.2015.91Licence: Unspecified

PID3905317
© 2015 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.
Accepted author manuscript, 167 KBLicence: Unspecified

Cite this

The Importance of Proper Measurement for a Cloud Security Assurance Model. / Duncan, Bob; Whittington, Mark.
2015 IEEE 7th International Conference on Cloud Computing Technology and Science (CloudCom). Institute of Electrical and Electronics Engineers (IEEE), 2015. p. 517-522.

Research output: Chapter in Book/Report/Conference proceeding › Published conference contribution

Duncan, B & Whittington, M 2015, The Importance of Proper Measurement for a Cloud Security Assurance Model. in 2015 IEEE 7th International Conference on Cloud Computing Technology and Science (CloudCom). Institute of Electrical and Electronics Engineers (IEEE), pp. 517-522, 2015 IEEE 7th International Conference on Cloud Computing Technology and Science (CloudCom), Vancouver, Canada, 30/11/15. https://doi.org/10.1109/CloudCom.2015.91

@inproceedings{c7de9c54f7154a19ad36e277053d6b8c,

title = "The Importance of Proper Measurement for a Cloud Security Assurance Model",

abstract = "Defining proper measures for evaluating the effectiveness of an assurance model, which we have developed to ensure cloud security, is vital to ensure the successful implementation and continued running of the model. We need to understand that with security being such an essential component of business processes, responsibility must lie with the board. The board must be responsible for defining their security posture on all aspects of the model, and therefore must also be responsible for defining what the necessary measures should be. Without measurement, there can be no control. However, it will be also be necessary to properly engage with cloud service providers to achieve a more meaningful degree of security for the cloud user.",

keywords = "security, privacy, standards, compliance, audit, measurement, cloud service providers, service level agreements, assurance",

author = "Bob Duncan and Mark Whittington",

year = "2015",

month = nov,

day = "30",

doi = "10.1109/CloudCom.2015.91",

language = "English",

isbn = "978-1-4673-9561-8 ",

pages = "517--522",

booktitle = "2015 IEEE 7th International Conference on Cloud Computing Technology and Science (CloudCom)",

publisher = "Institute of Electrical and Electronics Engineers (IEEE)",

note = "2015 IEEE 7th International Conference on Cloud Computing Technology and Science (CloudCom), CloudCom 2015 ; Conference date: 30-11-2015 Through 03-12-2015",

url = "http://cipsijoomla.ux.uis.no/cloudcom2015/",

}

TY - GEN

T1 - The Importance of Proper Measurement for a Cloud Security Assurance Model

AU - Duncan, Bob

AU - Whittington, Mark

PY - 2015/11/30

Y1 - 2015/11/30

N2 - Defining proper measures for evaluating the effectiveness of an assurance model, which we have developed to ensure cloud security, is vital to ensure the successful implementation and continued running of the model. We need to understand that with security being such an essential component of business processes, responsibility must lie with the board. The board must be responsible for defining their security posture on all aspects of the model, and therefore must also be responsible for defining what the necessary measures should be. Without measurement, there can be no control. However, it will be also be necessary to properly engage with cloud service providers to achieve a more meaningful degree of security for the cloud user.

AB - Defining proper measures for evaluating the effectiveness of an assurance model, which we have developed to ensure cloud security, is vital to ensure the successful implementation and continued running of the model. We need to understand that with security being such an essential component of business processes, responsibility must lie with the board. The board must be responsible for defining their security posture on all aspects of the model, and therefore must also be responsible for defining what the necessary measures should be. Without measurement, there can be no control. However, it will be also be necessary to properly engage with cloud service providers to achieve a more meaningful degree of security for the cloud user.

KW - security

KW - privacy

KW - standards

KW - compliance

KW - audit

KW - measurement

KW - cloud service providers

KW - service level agreements

KW - assurance

U2 - 10.1109/CloudCom.2015.91

DO - 10.1109/CloudCom.2015.91

M3 - Published conference contribution

SN - 978-1-4673-9561-8

SP - 517

EP - 522

BT - 2015 IEEE 7th International Conference on Cloud Computing Technology and Science (CloudCom)

PB - Institute of Electrical and Electronics Engineers (IEEE)

T2 - 2015 IEEE 7th International Conference on Cloud Computing Technology and Science (CloudCom)

Y2 - 30 November 2015 through 3 December 2015

ER -

The Importance of Proper Measurement for a Cloud Security Assurance Model

Abstract

Conference

Keywords

Access to Document

Fingerprint

Cite this