Towards the integration of security transparency in the modelling and design of cloud based systems

Authors

M. Ouedraogo and S. Islam

Reference

in Advanced Information Systems Engineering Workshops, CAiSE 2015 International Workshops, Stockholm, Sweden, June 8-9, 2015, Lecture Notes in Business Information Processing, vol. 215, A. Persson and J. Stirna (Eds.), Springer, pp. 495-506, 2015

Description

The lacks of security transparency and mutual auditability have recently been acknowledged by the industry and research community as one of the most salient security concerns inherent to the cloud model. This paper discusses the topic of security transparency and mutual auditability considering the cloud based services. In particular, the existing state of the art practice and initiatives for promoting more trust within the realm of cloud services are analysed throughout this paper. Finally, we highlight a number of avenues that can be further researched by the secure information system community to ensure the development of cloud systems that seamlessly blend concepts that help capture, not only the resource need of the future cloud service users, but also their need for further visibility on a security matter which responsibility somehow lies in the hand of a third party.

Link

doi:10.1007/978-3-319-19243-7_45