Enterprise to Cloud Security Assessment - A Method using OSSTMM 3.0 Concepts

Ronivon Costa; Carlos Serrão

doi:10.5220/0004666005710578

Enterprise to Cloud Security Assessment - A Method using OSSTMM 3.0 Concepts

Ronivon Costa, Carlos Serrão

2013

Abstract

Much has been talked about security, and with the wide spread and adoption of Cloud computing, the talk has followed the buzz and put Cloud Security in the spotlights. Security guides for the Cloud has been published, but we understand that is still missing a practical assessment methodology that would allow organizations to quick understand how the security of their assets are impacted when it is farmed out to Public Clouds. Our contribution to address this problem is a method to isolate the organization’s assets from the environment it is hosted, and compare metrics from the environment only. This method provides the important benefit of allowing the organization to determine how security will be impacted without having to actually migrate its resources.

Download

Paper Citation

in Harvard Style

Costa R. and Serrão C. (2013). Enterprise to Cloud Security Assessment - A Method using OSSTMM 3.0 Concepts . In Proceedings of the International Conference on Knowledge Discovery and Information Retrieval and the International Conference on Knowledge Management and Information Sharing - Volume 1: ISI–BDM, (IC3K 2013) ISBN 978-989-8565-75-4, pages 571-578. DOI: 10.5220/0004666005710578

in Bibtex Style

@conference{isi–bdm13,
author={Ronivon Costa and Carlos Serrão},
title={Enterprise to Cloud Security Assessment - A Method using OSSTMM 3.0 Concepts},
booktitle={Proceedings of the International Conference on Knowledge Discovery and Information Retrieval and the International Conference on Knowledge Management and Information Sharing - Volume 1: ISI–BDM, (IC3K 2013)},
year={2013},
pages={571-578},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0004666005710578},
isbn={978-989-8565-75-4},
}

in EndNote Style

TY - CONF
JO - Proceedings of the International Conference on Knowledge Discovery and Information Retrieval and the International Conference on Knowledge Management and Information Sharing - Volume 1: ISI–BDM, (IC3K 2013)
TI - Enterprise to Cloud Security Assessment - A Method using OSSTMM 3.0 Concepts
SN - 978-989-8565-75-4
AU - Costa R.
AU - Serrão C.
PY - 2013
SP - 571
EP - 578
DO - 10.5220/0004666005710578