Abstract
The acceptance of the cloud as an infrastructure to host applications is a growing trend. Facilitating and hosting applications on the cloud reduces support and maintenance costs. However, concerns about the security of these applications are one of the primary reasons organizations avoid complete adoption of cloud services. Although cloud service providers (CSPs) offer standard security, they don't address security with respect to application's security requirements. This article proposes an offline risk-assessment framework to evaluate the security offered by a CSP from the perspective of an application to be migrated to it. Once the most secure CSP is identified for a given application, the proposed framework performs a cost-benefit tradeoff analysis in terms of the security dispensed and service costs to support the formation of an ideal cloud migration plan.
Recommended Citation
S. K. Madria and A. Sen, "Offline Risk Assessment of Cloud Service Providers," IEEE Cloud Computing, vol. 2, no. 3, pp. 50 - 57, article no. 7158970, Institute of Electrical and Electronics Engineers, May 2015.
The definitive version is available at https://doi.org/10.1109/MCC.2015.63
Department(s)
Computer Science
Keywords and Phrases
cloud adoption; cloud computing; cloud security; cloud service provider; risk assessment
International Standard Serial Number (ISSN)
2325-6095
Document Type
Article - Journal
Document Version
Citation
File Type
text
Language(s)
English
Rights
© 2024 Institute of Electrical and Electronics Engineers, All rights reserved.
Publication Date
01 May 2015
