Search CORE

12 research outputs found

Cyber risk assessment in cloud provider environments: Current models and future needs

Traditional frameworks for risk assessment do not work well for cloud computing. While recent work has often focussed on the risks faced by firms adopting or selecting cloud services, there has been little research on how cloud providers might assess their own services. In this paper, we use an in-depth review of the extant literature to highlight the weaknesses of traditional risk assessment frameworks for this task. Using examples, we then describe a new risk assessment model (CSCCRA) and compare this against three established approaches. For each approach, we consider its goals, the risk assessment process, decisions, the scope of the assessment and the way in which risk is conceptualised. This evaluation points to the need for dynamic models specifically designed to evaluate cloud risk. Our suggestions for future research are aimed at improving the identification, assessment, and mitigation of inter-dependent cloud risks inherent in a defined supply chain

Crossref

Oxford University Research Archive

Griffith Research Online

Kent Academic Repository

Novel efficient techniques for real-time cloud security assessment

Crossref

A broker-based framework for standardization and management of Cloud Security-SLAs

Author: Alliance C.
Ateniese
Bernsmed
Bryson
Casola
Cloud Security Alliance
CSA Security
Da Silva
Da Silva
de Vaulx
Giuseppe
Halabi
Halabi
Halabi
Hashizume
ISO/IEC 27001:2013
Kalyanmoy
Martine Bellaiche
Microsoft
Mirkovic
Na
Rak
Rojas
SPECS
Statista
Taha
Talal Halabi
Trapero
Wei
Xiao
Zhengwei
Publication venue: 'Elsevier BV'
Publication date: 01/01/2018
Field of study

Crossref

PolyPublie

Imagining Numbers: Risk, Quantification, and Aviation Security

Crossref

An Adversarial Risk Analysis Framework for Cybersecurity

Author: Agence Nationale de la Sécurité des Systems d'Information (ANSSI)
Aitor Couce‐Vieira
Anderson R.
Andress J.
Central Communication and Telecommunication Agency (CCTA)
Clemen R. T.
Cloud Security Alliance (CSA)
Cooke R.
Daniel G. Rasines
David Rios Insua
Departamento de Seguridad Ciudadana (DSC de Victoria)
European Network and Information Security Agency (ENISA)
French S.
French S.
Galway L. A.
Incapsula
Information Security Forum (ISF)
International Organization for Standardization (ISO)
International Organization for Standardization (ISO)
Jose A. Rubio
Kaspersky Securelist Russia.
Katsiaryna Labunets
Lund M. S.
Ministerio de Hacienda y Administraciones Públicas (MINHAP)
Mowbray T. J.
National Institute of Standards and Technology (NIST)
National Technical Authority for Information Assurance (HMG)
Panda Security
Rios Insua D.
Verisign
Wolter Pieters
Publication venue: 'Wiley'
Publication date
Field of study

Crossref

Measuring populations' vulnerabilities for famine and food security interventions: the case of Ethiopia's Chronic Vulnerability Index

Author: Alwang
Bankoff
Blaikie
Boyce
CARE
CARE International
CARE/WFP (World Food Programme)
Chambers
Cuny
Devereux
Dilley
Edkins
Erkineh
Hilhorst
Hoddinott
IFPRI (International Food Policy Research Institute)/CSA (Central Statistical Agency)
Jaspars
Kumar-Range
Lautze
New Coalition for Food Security in Ethiopia
Pottier
Riely
Sandford
Sen
Sharp
Stephen
Stephen
Twigg
Varley
Von Braun
Webb
Publication venue: 'Wiley'
Publication date
Field of study

Crossref

Big Data-Enabled Analysis of DRGs-Based Payment on Stroke Patients in Jiaozuo, China

Crossref

Analysis of farmers’ participation decision and its level in honey marketing in Ethiopia

Author: A Mohammed
A Sebsib
AI Adeoti
ARD Mo
ASE Aifsp (Agri Service Ethiopia Amaro Integrated Food Security Program)
B Fenet
B Shrestha
B Tesfaye
CSA
Dangila Woreda Office of Agriculture
E Crane
G Almaz
G Gebreegziabher
G Teklu
H Atsbaha
J Omiti
K Chala
K Embaye
ML Mabuza
MoARD (Ministry of Agriculture and Rural Development)
N Adgaba
S Christopher
S Samuel
SB Ohen
T Getahun
T Kassa
Y Gidey
Publication venue: 'Springer Science and Business Media LLC'
Publication date
Field of study

Crossref

Modeling continuous security: A conceptual model for automated DevSecOps using open-source software over cloud (ADOC)

Author: Abdelrazek
Alahyari
Ali
Arce
Ardagna
Artac
Balalaie
Banica
Bird
Blake
Bodeau
Brook
Brunnert
Carter
Casola
Chen
Chen
Combemale
Crawford
CSA
CSCC
Daswani
Davis
Deck
Donkers
Duncan
Ebert
ENISA
Fernandes
Fernandez
Fitzgerald
Forsgren
Gacek
Greene
Grobauer
Hashizume
Hope
Hoque
Häkli
IBM
Jabbari
Jamshidi
John
Kang
Kim
Kratzke
Kumar
Kumar
Laukkanen
Liu
Luz
Lyman
Mackey
McDermott
Mell
Mimidis
Mogull
Mohan
Morris
Myrbakken
NCSC
Odun-Ayo
Parnin
Prates
Rodr-guez
Rodr-guez
Security
Shahin
Shahin
Sharma
Siebra
Sindre
Stol
Suzor
Synopsys
Synopsys
Takabi
Tomas
Truong
Truong
Tuma
Vaquero
Weeks
Xilouris
Yen-chang Chang
Zellner
Zissis
Publication venue: 'Elsevier BV'
Publication date
Field of study

Crossref

BIM security: A critical review and recommendations using encryption strategy and blockchain

Author: Abdulkader
Afsari
Afsari
Alhaidari
Ali
Alreshidi
Amazon Web Services
Amazon Web Services
Amazon Web Services
Arensman
Arrott
Autodesk
Axon
Azaria
Badertscher
Beach
Beach
Benhani
BIMserver.org
Bradley
Cano
Cerovsek
Chen
Cheng
Chiuini
Cidik
Cloud Security Alliance (CSA)
ConcensusDocs
Construction Indusrty Council
Construction Industry Council
Corbett
Costin
Das
Das
Das
Dassouki
Ding
Diro
Dropbox
El-Diraby
Ethereum Foundation
Fagan
Fraga-Lamas
Furfaro
Gai
Gnaur
Gourisetti
Gourisetti
Grance
Graphisoft
Gu
Hasan
Hattab
Heiskanen
Hess
Hirschler
Huang
International Organisation for Standardisation (ISO)
Islam
Ismail
Jian
Jiao
Kamhoua
Kang
Karan
Kassem
Killer
Kumbhar
Lea
Li
Li
Li
Liu
Ma
Mahamadu
Ming
Mohd Sabri
Muhammad
Mutis
Mylrea
Nathan
National Building Specification (NBS)
Niknam
Nývlt
Okonofua
Olatunji
Oracle
Park
Parn
Parn
Patacas
Penzes
Perfetto
Protocol Labs
Redmond
Rezgui
Royal Institutue of British Architects
Sacks
Sardroud
Scherer
Sebastian
Setterfield
Singh
Skandhakumar
Skandhakumar
Skandhakumar
Smith
Studnia
Suchocki
Svalestuen
Szymanski
Tanana
Thayananthan
Tse
Tunc
Tunc
Turk
Turner
Vladuta
Wang
Watson
Winkler
Wong
Wood
Yan
Zatuliveter
Zhang
Zhang
Zhao
Zheng
Publication venue: 'Elsevier BV'
Publication date: 01/01/2021
Field of study

Security of information in collaborative BIM platforms is crucial particularly for critical projects such as that of government buildings, prisons, and power plants. Inappropriate distribution and loss of sensitive information may potentially lead to physical security threats, financial loss, and loss of trust and reputation. Therefore, this paper identifies the information security requirements of collaborative BIM platforms considering the characteristics related to data security of collaborative BIM platforms through a literature review and as a result, identifies seven components of BIM security, based on which defines three levels of BIM security. Existing cybersecurity facilitating technologies such as encryption protocols, distributed database technology, and blockchain technology are reviewed to assess applicability to BIM security. This review shows that although the technologies to support BIM security are available in research and on market, they are not customized in existing collaborative BIM platforms to support BIM security. Therefore, two conceptual frameworks are proposed – (1) an encryption strategy-based framework to facilitate secure storage and distribution of BIM and (2) a blockchain-based framework to record BIM changes in a tamper-proof ledger for the non-trusting environment of construction projects. Discussions on cost and functionality are provided, which will be further extended in the future

Crossref

Hong Kong University of Science and Technology Institutional Repository