Security aspects of e-Health systems migration to the cloud

Michalas, Antonis; Paladi, Nicolae; Gehrmann, Christian

doi:10.1109/healthcom.2014.7001843

Cited by 28 publications

(19 citation statements)

References 12 publications

(13 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…While cloud computing has exploded in popularity in recent years thanks to the potential efficiency and cost savings of outsourcing the management of data and applications, a number of vulnerabilities that led to various attacks have left many potential users worried [15]. As a result, experts in the field argued that 120 new technologies are needed in order to create trusted cloud services [16,17] services that will eventually eradicate the suspicion of users for cloud computing by providing the necessary security guarantees.…”

Section: Why Searchable Encryption Squarely Fits the Cloudmentioning

confidence: 99%

A survey on design and implementation of protected searchable data in the cloud

Dowsley

Michalas

Nagel

et al. 2017

Computer Science Review

Self Cite

View full text Add to dashboard Cite

While cloud computing has exploded in popularity in recent years thanks to the potential efficiency and cost savings of outsourcing the storage and management of data and applications, a number of vulnerabilities that led to multiple attacks have deterred many potential users.As a result, experts in the field argued that new mechanisms are needed in order to create trusted and secure cloud services. Such mechanisms would eradicate the suspicion of users towards cloud computing by providing the necessary security guarantees. Searchable Encryption is among the most promising solutions -one that has the potential to help offer truly secure and privacypreserving cloud services. We start this paper by surveying the most important searchable encryption schemes and their relevance to cloud computing. In light of this analysis we demonstrate the inefficiencies of the existing schemes and expand our analysis by discussing certain confidentiality and privacy issues. Further, we examine how to integrate such a scheme with a popular cloud platform. Finally, we have chosen -based on the findings of our analysis -an * Corresponding Author. Preprint submitted to Computer Science Review JournalAugust 14, 2017 existing scheme and implemented it to review its practical maturity for deployment in real systems. The survey of the field, together with the analysis and with the extensive experimental results provides a comprehensive review of the theoretical and practical aspects of searchable encryption.

show abstract

Section: Why Searchable Encryption Squarely Fits the Cloudmentioning

confidence: 99%

A survey on design and implementation of protected searchable data in the cloud

Dowsley

Michalas

Nagel

et al. 2017

Computer Science Review

Self Cite

View full text Add to dashboard Cite

show abstract

“…First, we present a list of core security requirements and challenges that must be considered when migrating to a cloud environment. These security requirements were derived based on our experience with migrating existing applications to a private Infrastructure-as-aService (IaaS) cloud [30]. We extend this guide by discussing important attack vector characteristics for cloud environments that will pave the way for providing tighter security when building cloud services.…”

Section: Our Contributionmentioning

confidence: 99%

PaaSword: A Holistic Data Privacy and Security by Design Framework for Cloud Services

et al. 2017

Self Cite

View full text Add to dashboard Cite

Enterprises increasingly recognize the compelling economic and operational benefits from virtualizing and pooling IT resources in the cloud. Nevertheless, the significant and valuable transformation of organizations that adopt cloud computing is accompanied by a number of security threats that should be considered. In this paper, we outline significant security challenges presented when migrating to a cloud environment and propose PaaSword -a novel holistic framework that aspires to alleviate these challenges. Specifically, the proposed framework involves a context-aware security model, the necessary policies enforcement mechanism along with a physical distribution, encryption and query middleware.

show abstract

“…However, organizations that work with sensitive data, such as health records, require complete control over the physical storage location and data access. As a result, storing sensitive data in the cloud complicates adherence to regulatory compliance laws, since such data may fall under different regulations depending on where it is physically stored [80]. Governance is a set of activities that are conducted to execute strategy, proper implementation of policies and procedures, relation between policies, assessing policies in practice, assessing and updating policies and providing frameworks to observe regulations in an organization [48].…”

Section: Data Warehouse and Physical Infrastructure Security (Governancmentioning

confidence: 99%

A New Conceptual Framework Modelling for Cloud Computing Risk Management in Banking Organizations

Elzamly¹,

Hussin²,

Naser³

et al. 2016

IJGDC

View full text Add to dashboard Cite

Despite much research and progress in the areas of cloud computing project, many cloud computing projects have a very high failure rate when it comes to the banking organizations. The aim of this study is to propose a new conceptual framework modelling for cloud computing risk management in banking organizations. There are the main five stages for a successful cloud computing framework in a banking organization as described in Figure 1: Cloud mobility and cloud banking applications, cloud service models, cloud deployment models, cloud risk management models, and cloud security models. As a future work, we will apply the framework in the real banking world to mitigate and control the security issues. A successful framework modelling for cloud computing risk management will greatly improve the probability of cloud computing success in banking organizations.

show abstract

Security aspects of e-Health systems migration to the cloud

Cited by 28 publications

References 12 publications

A survey on design and implementation of protected searchable data in the cloud

A survey on design and implementation of protected searchable data in the cloud

PaaSword: A Holistic Data Privacy and Security by Design Framework for Cloud Services

A New Conceptual Framework Modelling for Cloud Computing Risk Management in Banking Organizations

Contact Info

Product

Resources

About