Title :
Holistic framework of security management for cloud service providers
Author_Institution :
Sch. of Inf. Manage., Beijing Inf. Sci. & Technol. Univ., Beijing, China
Abstract :
Cloud computing allows for organizations to have the opportunity to use Internet-based services so that they can reduce start-up costs, lower capital expenditures, use services on a pay-as-you-use basis, access applications only as needed, and quickly reduce or increase capacities. As the march of cloud computing continues, it brings both new opportunities and new security issues. This paper introduces a holistic security management framework based on aligning policies relating to standards of IT governance and security management to fit with the cloud computing model. Further, some practical controls are discussed in detail, enabling cloud service providers and consumers to be security certified.
Keywords :
cloud computing; security of data; IT governance; Internet-based services; capital expenditures; cloud computing model; cloud service providers; holistic framework; holistic security management framework; pay-as-you-use basis; security issues; start-up costs; Cloud computing; ISO standards; Information security; Organizations; Standards organizations; cloud computing; cloud service; framework; risk assessment; security management;
Conference_Titel :
Industrial Informatics (INDIN), 2012 10th IEEE International Conference on
Conference_Location :
Beijing
Print_ISBN :
978-1-4673-0312-5
DOI :
10.1109/INDIN.2012.6301237
