More and more individual users and businesses are earnestly considering cloud adoption for achieving mission objectives. However, concerns being raised include the ability of users to ascertain the security posture of cloud service providers to adequately safeguard data and applications. We present a cloud security audit framework that entails a set of concepts such as goals, constraint, plan and evidence to enable prospective cloud users to identify their migration goals and introduce constraints that must be satisfied by a potential cloud provider before migration. The concepts are considered as a language for describing the properties necessary for cloud security audit through a metamodel. An example is given to demonstrate the applicability of the approach.
CITATION STYLE
Ismail, U. M., Islam, S., & Mouratidis, H. (2015). A framework for cloud security audit. In Communications in Computer and Information Science (Vol. 534, pp. 296–309). Springer Verlag. https://doi.org/10.1007/978-3-319-23276-8_27
Mendeley helps you to discover research relevant for your work.