Chapter

Guide to Security Assurance for Cloud Computing

Part of the series Computer Communications and Networks pp 139-169

Date:

Improving Cloud Assurance and Transparency Through Accountability Mechanisms

  • Siani PearsonAffiliated withSecurity and Manageability Lab, Hewlett Packard Labs Email author 
  • , Jesus LunaAffiliated withCloud Security Alliance
  • , Christoph ReichAffiliated withFurtwangen University

* Final gross prices may vary according to local VAT.

Get Access

Abstract

Accountability is a critical prerequisite for effective governance and control of corporate and private data processed by cloud-based information technology services. This chapter clarifies how accountability tools and practices can enhance cloud assurance and transparency in a variety of ways. Relevant techniques and terminologies are presented, and a scenario is considered to illustrate the related issues. In addition, some related examples are provided involving cutting-edge research and development in fields like risk management, security and Privacy Level Agreements and continuous security monitoring. The provided arguments seek to justify the use of accountability-based approaches for providing an improved basis for consumers’ trust in cloud computing and thereby can benefit from the uptake of this technology.

Keywords

Accountability Assurance Cloud computing Continuous monitoring Privacy level agreement (PLA) Service level agreement (SLA) Transparency