Cloud Governance Model and Security for Cloud Service Providers
Woldu, Lewam (2013)
Metropolia Ammattikorkeakoulu
2013
All rights reserved
Julkaisun pysyvä osoite on
https://urn.fi/URN:NBN:fi:amk-2013110416558
https://urn.fi/URN:NBN:fi:amk-2013110416558
Tiivistelmä
This study aimed to help IT professionals involved in providing cloud services with the specialization of private, public or hybrid clouds. Giant cloud services providers such as Google, Microsoft, Sun, Amazon, EBay, SalesForce.com and ORACLE are dominating the cloud world by providing different applications to any organization or individual interested all around the world.
Since the subject of cloud computing and cloud governance model is vast, the study had to be conducted in a selective manner which would suite the investigation. The companies were Ficolo, ORACLE and Synechron. Each company’s background together with their specific cloud governance model, Service Oriented Architecture (SOA), was observed and evaluated. After a thorough comparison and analysis a new SOA framework was proposed along with its detailed components.
To make the study complete, the most important issues in relation to cloud security were also discussed. The undeniable doubt of customers to the cloud world is the handing over of their data with full confidence to a cloud provider or a third party. This then gives the opportunity for cloud providers to address the challenges by designing up-to-date models and methodologies.
Therefore in order to evaluate real time applications related to governance and security issues, the study has followed standards designed by NIST, ISO 27001 and BSI 100-2 IT-Grundschutz. These standards were referred specifically during the design of the improved SOA Governance Framework and security recommendations.
Since the subject of cloud computing and cloud governance model is vast, the study had to be conducted in a selective manner which would suite the investigation. The companies were Ficolo, ORACLE and Synechron. Each company’s background together with their specific cloud governance model, Service Oriented Architecture (SOA), was observed and evaluated. After a thorough comparison and analysis a new SOA framework was proposed along with its detailed components.
To make the study complete, the most important issues in relation to cloud security were also discussed. The undeniable doubt of customers to the cloud world is the handing over of their data with full confidence to a cloud provider or a third party. This then gives the opportunity for cloud providers to address the challenges by designing up-to-date models and methodologies.
Therefore in order to evaluate real time applications related to governance and security issues, the study has followed standards designed by NIST, ISO 27001 and BSI 100-2 IT-Grundschutz. These standards were referred specifically during the design of the improved SOA Governance Framework and security recommendations.