Über den Autor
Dr. Siani Pearson is a senior researcher in the Cloud and Security Research Lab of HP Labs, Bristol, UK.Dr. George Yee is a consultant with his own company, and an Adjunct Research Professor in the Department of Systems and Computer Engineering at Carleton University, Ottawa, ON, Canada.
Part I: Introduction to the IssuesPrivacy, Security and Trust in Cloud ComputingS. PearsonPart II: Law Enforcement and AuditsAccessing Data in the Cloud: The Long Arm of the Law Enforcement AgentI. WaldenA Privacy Impact Assessment Tool for Cloud ComputingD. Tancock, S. Pearson, and A. CharlesworthUnderstanding Cloud AuditsF. Doelitzscher, C. Reich, M. Knahl, and N. ClarkPart III: Security and IntegritySecurity Infrastructure for Dynamically Provisioned Cloud Infrastructure ServicesY. Demchenko, C. Ngo, C. de Laat, D. Lopez, A. Morales, and J. A. García-EspínModeling the Runtime Integrity of Cloud Servers: a Scoped Invariant PerspectiveJ. Wei, C. Pu, C. V. Rozas, A. Rajan, and F. ZhuPart IV: Risk ConsiderationsInadequacies of Current Risk Controls for the CloudS. Creese, M. Goldsmith and P. HopkinsEnterprise Information Risk Management: Dealing with Cloud ComputingS. Shiu, A. Baldwin, and D. Pym
This book analyzes the latest advances in privacy, security and risk technologies within cloud environments. With contributions from leading experts, the text presents both a solid overview of the field and novel, cutting-edge research. A Glossary is also included at the end of the book. Topics and features: considers the various forensic challenges for legal access to data in a cloud computing environment; discusses privacy impact assessments for the cloud, and examines the use of cloud audits to attenuate cloud security problems; reviews conceptual issues, basic requirements and practical suggestions for provisioning dynamically configured access control services in the cloud; proposes scoped invariants as a primitive for analyzing a cloud server for its integrity properties; investigates the applicability of existing controls for mitigating information security risks to cloud computing environments; describes risk management for cloud computing from an enterprise perspective.
Contains contributions from leading experts in the fieldPresents a solid overview of the field with a thorough introduction to the core issues, supplemented by a GlossaryDescribes novel, cutting-edge research in the field, including a practical selection of innovative solutions to common problems