Title :
Building a Security Aware Cloud by Extending Internal Control to Cloud
Author :
Hiroyuki, Sato ; Atsushi, Kanai ; Shigeaki, Tanimoto
Author_Institution :
Univ. of Tokyo, Tokyo, Japan
Abstract :
Faced with today´s innovative blow-up of cloud technologies, we are forced to rebuild services in terms of cloud. In the rebuilding, considering a facet of cloud as social infrastructure, security is a critical problem. Most of insecurity against clouds can be summarized as insecurity of management, which is classified into the multiple stakeholder problem, and the open space security problem. As a solution to these problems, we extend ISMS internal control to cloud by implementing trust base of security on IAM and key management. Because ISMS internal control is a source of trust, its extension to cloud can be an essential solution of security. Moreover, by controlling levels of quality of service and security by contract, we can optimize cost on service and security delegated to a cloud.
Keywords :
cloud computing; quality of service; security of data; IAM; ISMS internal control; cloud service; key management; multiple stakeholder problem; open space security problem; quality of service; security aware cloud technology; social infrastructure; Cloud computing; Contracts; Information security; Organizations; Standards organizations; IAM; cloud; internal control; key management; security; trust model;
Conference_Titel :
Autonomous Decentralized Systems (ISADS), 2011 10th International Symposium on
Conference_Location :
Tokyo & Hiroshima
Print_ISBN :
978-1-61284-213-4
DOI :
10.1109/ISADS.2011.48
