A Quantitative Methodology for Cloud Security Risk Assessment
Srijita Basu, Anirban Sengupta, Chandan Mazumdar
2017
Abstract
Assets of Cloud stakeholders (Service Providers, Consumers and Third Parties) are the essential elements required to carry out necessary functions / services of the cloud system. Assets usually contain vulnerabilities that may be exploited by threats to jeopardize the functioning of the cloud system. Therefore a proper risk assessment methodology is required to determine the asset-specific and stakeholder-specific risks so as to be able to control them. Existing methodologies fail to comprehensively evaluate various risk elements like asset value, vulnerabilities and threats. This paper is an attempt to quantitatively model all risk elements and devise a methodology to assess risks to assets and stakeholders of a cloud system.
DownloadPaper Citation
in Harvard Style
Basu S., Sengupta A. and Mazumdar C. (2017). A Quantitative Methodology for Cloud Security Risk Assessment . In Proceedings of the 7th International Conference on Cloud Computing and Services Science - Volume 1: CLOSER, ISBN 978-989-758-243-1, pages 120-131. DOI: 10.5220/0006294401200131
in Bibtex Style
@conference{closer17,
author={Srijita Basu and Anirban Sengupta and Chandan Mazumdar},
title={A Quantitative Methodology for Cloud Security Risk Assessment},
booktitle={Proceedings of the 7th International Conference on Cloud Computing and Services Science - Volume 1: CLOSER,},
year={2017},
pages={120-131},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0006294401200131},
isbn={978-989-758-243-1},
}
in EndNote Style
TY - CONF
JO - Proceedings of the 7th International Conference on Cloud Computing and Services Science - Volume 1: CLOSER,
TI - A Quantitative Methodology for Cloud Security Risk Assessment
SN - 978-989-758-243-1
AU - Basu S.
AU - Sengupta A.
AU - Mazumdar C.
PY - 2017
SP - 120
EP - 131
DO - 10.5220/0006294401200131