Dr Nick Pitropakis N.Pitropakis@napier.ac.uk
Associate Professor
Cloud Security, Privacy, and Trust Baselines
Pitropakis, Nikolaos; Katsikas, Sokratis; Lambrinoudakis, Costas
Authors
Sokratis Katsikas
Costas Lambrinoudakis
Abstract
According to ISO 27001, a threat is a potential event. When a threat turns into an actual event, it may cause an undesirable incident. It is undesirable because the incident may harm an organization or a system, causing a security incident and/or the violation of users’ privacy. Existing attempts to classify threats identi ed in cloud environments are either based on major cloud dependencies (such as the network or the shared memory of VMs) or on the use of various risk assessment tools [1], like CRAMM and Octave [2,3]. e classi cation method presented in this chapter uses three distinct categories: threats related to the infrastructure, threats related to the service provider, and generic threats. e key objective of the proposed classi cation is to lessen the burden on the cloud administrators in securityrelated issues, by pointing out the major problems that emerge and thus saving them time and money.
Citation
Pitropakis, N., Katsikas, S., & Lambrinoudakis, C. (2016). Cloud Security, Privacy, and Trust Baselines. In Cloud Computing Security Foundations and Challenges. CRC Press
| Acceptance Date | Aug 19, 2016 |
|---|---|
| Publication Date | Aug 19, 2016 |
| Deposit Date | Sep 21, 2018 |
| Publisher | CRC Press |
| Edition | 1st |
| Book Title | Cloud Computing Security Foundations and Challenges |
| ISBN | 9781482260946 |
| Keywords | Data security, cyber security, ISO 27001, cloud security, |
| Public URL | http://researchrepository.napier.ac.uk/Output/1304024 |
You might also like
Towards The Creation Of The Future Fish Farm
(2023)
Journal Article
Using Social Media & Sentiment Analysis to Make Investment Decisions
(2022)
Journal Article