Visualizing the Information Security Maturity Level of Public Cloud Services Used by Public Administrations

Michael Diener; Thomas Bolz

doi:10.5220/0012637700003711

Visualizing the Information Security Maturity Level of Public Cloud Services Used by Public Administrations

Michael Diener, Thomas Bolz

2024

Abstract

The digitization of public administrations in Germany is making slow progress. At the same time, more and more innovative IT solutions are available on the market for solving practical business problems, e.g. web-based file sharing applications that are offered by external cloud service providers. Due to data protection regulations and uncertainties regarding information security issues, the adoption and operation of public cloud services within public administrations is a challenging task. As part of our research, we constructed a three-phase process model that uses a web-based tool approach, in order to support chief information officers to manage security audits of various public cloud services that are used by different organizational units. To ensure the efficient, transparent and comprehensive conduction of cloud security audits, we developed graphical visualization components that illustrate the information security maturity level in relation to multiple security requirements of the analyzed public cloud services. We have successfully evaluated our proposed tool visualization under real conditions within a public administration. Furthermore, we discussed several use cases and the user experience with different experts in this application domain.

Download

Paper Citation

in Harvard Style

Diener M. and Bolz T. (2024). Visualizing the Information Security Maturity Level of Public Cloud Services Used by Public Administrations. In Proceedings of the 14th International Conference on Cloud Computing and Services Science - Volume 1: CLOSER; ISBN 978-989-758-701-6, SciTePress, pages 192-203. DOI: 10.5220/0012637700003711

in Bibtex Style

@conference{closer24,
author={Michael Diener and Thomas Bolz},
title={Visualizing the Information Security Maturity Level of Public Cloud Services Used by Public Administrations},
booktitle={Proceedings of the 14th International Conference on Cloud Computing and Services Science - Volume 1: CLOSER},
year={2024},
pages={192-203},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0012637700003711},
isbn={978-989-758-701-6},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 14th International Conference on Cloud Computing and Services Science - Volume 1: CLOSER
TI - Visualizing the Information Security Maturity Level of Public Cloud Services Used by Public Administrations
SN - 978-989-758-701-6
AU - Diener M.
AU - Bolz T.
PY - 2024
SP - 192
EP - 203
DO - 10.5220/0012637700003711
PB - SciTePress