Please use this identifier to cite or link to this item:
Title: A policy-based security framework for storage and computation on enterprise data in the cloud
Authors: De, Sourya Joyee
Pal, Asim Kumar
Keywords: Data Integrity
Random Oracle Model
Issue Date: 2014
Publisher: SCOPUS
Proceedings of the Annual Hawaii International Conference on System Sciences
IEEE Computer Society
Abstract: A whole range of security concerns that can act as barriers to the adoption of cloud computing have been identified by researchers over the last few years. While outsourcing its business-critical data and computations to the cloud, an enterprise loses control over them. How should the organization decide what security measures to apply to protect its data and computations that have different security requirements from a Cloud Service Provider (CSP) with an unknown level of corruption? The answer to this question relies on th e organization's perception about the CSP's trustworthiness and the security requirements of its data. This paper proposes a decentralized, dynamic and evolving policy-based security framework that helps an organization to derive such perceptions from knowledgeable and trusted employee roles and based on that, choose the most relevant security policy specifying the security measures necessary for outsourcing data and computations to the cloud. The organizational perception is built through direct user participation and is allowed to evolve over time. © 2014 IEEE.
Description: De, Sourya Joyee, Management Information Systems Group, Indian Institute of Management, Calcutta, India; Pal, Asim Kumar, Management Information Systems Group, Indian Institute of Management, Calcutta, India
ISSN/ISBN - 15301605
DOI - 10.1109/HICSS.2014.613
Appears in Collections:Management Information Systems

Files in This Item:
There are no files associated with this item.

Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.