Information Security Risk Management Framework for the Cloud Computing Environments

The security risks associated with each cloud delivery model vary and are dependent on a wide range of factors including the sensitivity of information assets, cloud architectures and security controls involved in a particular cloud environment. Over time, organizations tend to relax their security...

Full description

Saved in:
Bibliographic Details
Published in2010 IEEE 10th International Conference on Computer and Information Technology pp. 1328 - 1334
Main Authors Xuan Zhang, Wuwong, N, Hao Li, Xuejie Zhang
Format Conference Proceeding
LanguageEnglish
Published IEEE 01.06.2010
Subjects
Cloud computing
Clouds
Monitoring
Risk management
risk management framwork
Security
Online AccessGet full text
ISBN1424475473
9781424475476
DOI10.1109/CIT.2010.501

Cover

More Information
Summary:The security risks associated with each cloud delivery model vary and are dependent on a wide range of factors including the sensitivity of information assets, cloud architectures and security controls involved in a particular cloud environment. Over time, organizations tend to relax their security posture. To combat a relaxation of security, the cloud provider should perform regular security assessments. Risk management framework is one of security assessment tool to reduction of threats and vulnerabilities and mitigates security risks. The goal of this paper is to present information risk management framework for better understanding critical areas of focus in cloud computing environment, to identifying a threat and identifying vulnerability. This framework is covering all of cloud service models and cloud deployment models. Cloud provider can be applied this framework to organizations to do risk mitigation.
ISBN:1424475473
9781424475476
DOI:10.1109/CIT.2010.501