loading
Documents

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Oscar Rebollo 1 ; Daniel Mellado 2 and Eduardo Fernández-Medina 3

Affiliations: 1 Social Security IT Management and Ministry of Labour and Immigration, Spain ; 2 Spanish Tax Agency, Spain ; 3 University of Castilla-La Mancha, Spain

ISBN: 978-989-8565-64-8

Keyword(s): information security governance, cloud computing, security governance framework, cloud lifecycle

Abstract: The cloud computing paradigm provides a more efficient way in which to provide IT services, introducing on-demand services and flexible computing resources. The adoption of these cloud services is being hindered by the security issues that arise with this new environment. A global security solution, which deals with the specific particularities of the cloud paradigm, is therefore needed, and literature fails to report on such a solution. As a consequence, in this paper we propose a novel security governance framework focused on the cloud computing environment (ISGcloud). This framework is founded upon two main standards: on the one hand, we implement the core governance principles of the ISO/IEC 38500 governance standard; and on the other hand, we propose a cloud service lifecycle based on the ISO/IEC 27036 outsourcing security draft. The paper includes an overview of the framework and the description of a collection of activities and their related tasks.

PDF ImageFull Text

Download
CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 3.237.94.109

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Rebollo, O.; Mellado, D. and Fernández-Medina, E. (2013). Introducing a Security Governance Framework for Cloud Computing.In Proceedings of the 10th International Workshop on Security in Information Systems - Volume 1: WOSIS, (ICEIS 2013) ISBN 978-989-8565-64-8, pages 24-33. DOI: 10.5220/0004601400240033

@conference{wosis13,
author={Oscar Rebollo. and Daniel Mellado. and Eduardo Fernández{-}Medina.},
title={Introducing a Security Governance Framework for Cloud Computing},
booktitle={Proceedings of the 10th International Workshop on Security in Information Systems - Volume 1: WOSIS, (ICEIS 2013)},
year={2013},
pages={24-33},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0004601400240033},
isbn={978-989-8565-64-8},
}

TY - CONF

JO - Proceedings of the 10th International Workshop on Security in Information Systems - Volume 1: WOSIS, (ICEIS 2013)
TI - Introducing a Security Governance Framework for Cloud Computing
SN - 978-989-8565-64-8
AU - Rebollo, O.
AU - Mellado, D.
AU - Fernández-Medina, E.
PY - 2013
SP - 24
EP - 33
DO - 10.5220/0004601400240033

Login or register to post comments.

Comments on this Paper: Be the first to review this paper.