Please use this identifier to cite or link to this item:
|Title:||A policy-based security framework for storage and computation on enterprise data in the cloud|
|Authors:||De, Sourya Joyee|
Pal, Asim Kumar
Random Oracle Model
Proceedings of the Annual Hawaii International Conference on System Sciences
IEEE Computer Society
|Abstract:||A whole range of security concerns that can act as barriers to the adoption of cloud computing have been identified by researchers over the last few years. While outsourcing its business-critical data and computations to the cloud, an enterprise loses control over them. How should the organization decide what security measures to apply to protect its data and computations that have different security requirements from a Cloud Service Provider (CSP) with an unknown level of corruption? The answer to this question relies on th e organization's perception about the CSP's trustworthiness and the security requirements of its data. This paper proposes a decentralized, dynamic and evolving policy-based security framework that helps an organization to derive such perceptions from knowledgeable and trusted employee roles and based on that, choose the most relevant security policy specifying the security measures necessary for outsourcing data and computations to the cloud. The organizational perception is built through direct user participation and is allowed to evolve over time. © 2014 IEEE.|
|Description:||De, Sourya Joyee, Management Information Systems Group, Indian Institute of Management, Calcutta, India; Pal, Asim Kumar, Management Information Systems Group, Indian Institute of Management, Calcutta, India|
ISSN/ISBN - 15301605
DOI - 10.1109/HICSS.2014.613
|Appears in Collections:||Management Information Systems|
Files in This Item:
There are no files associated with this item.
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.