A Semi-Automatic Approach for Eliciting Cloud Security and Privacy Requirements

Nikolaos Argyropoulos, Shaun Shei, Christos Kalloniatis, Haralambos Mouratidis, Aidan Delaney, Andrew Fish, Stefanos Gritzalis

Research output: Chapter in Book/Conference proceeding with ISSN or ISBNConference contribution with ISSN or ISBNResearchpeer-review

Abstract

Cloud computing provides a wide range of services to organisations in a flexible and cost efficient manner. Nevertheless, inherent cloud security issues make organisations hesitant towards the migration of their services to cloud. In parallel, the cloud service-oriented nature requires a specific and more demanding description of the business functional requirements intended for migration. Organisations need to transform their functional requirements based on a specific language, taking into account the respective non-functional requirements of the migrating services. Thus, the need for an approach that will holistically capture organisations' security and privacy requirements and transform them to cloud service requirements is immense. To this end, this paper presents an approach that takes as input abstract security and privacy requirements and produces through a semi-automatic process various alternative implementation options for cloud services. To achieve that a series of model transformations are utilised in order to create a mapping between the organisational and the operational level of the system's analysis.
Original languageEnglish
Title of host publication50th Hawaii International Conference on System Sciences (HICSS)
Place of PublicationHawaii, USA
Pages4827-4836
Number of pages10
Publication statusPublished - 4 Jan 2017
Event50th Hawaii International Conference on System Sciences (HICSS) - Hawaii, USA, January 2017
Duration: 4 Jan 2017 → …

Conference

Conference50th Hawaii International Conference on System Sciences (HICSS)
Period4/01/17 → …

Fingerprint

Cloud computing
Systems analysis
Costs
Industry

Bibliographical note

Attribution-NonCommercial-NoDerivatives 4.0 International

Cite this

Argyropoulos, N., Shei, S., Kalloniatis, C., Mouratidis, H., Delaney, A., Fish, A., & Gritzalis, S. (2017). A Semi-Automatic Approach for Eliciting Cloud Security and Privacy Requirements. In 50th Hawaii International Conference on System Sciences (HICSS) (pp. 4827-4836). Hawaii, USA.
Argyropoulos, Nikolaos ; Shei, Shaun ; Kalloniatis, Christos ; Mouratidis, Haralambos ; Delaney, Aidan ; Fish, Andrew ; Gritzalis, Stefanos. / A Semi-Automatic Approach for Eliciting Cloud Security and Privacy Requirements. 50th Hawaii International Conference on System Sciences (HICSS). Hawaii, USA, 2017. pp. 4827-4836
@inproceedings{97931f1760a2406c968a60818955d015,
title = "A Semi-Automatic Approach for Eliciting Cloud Security and Privacy Requirements",
abstract = "Cloud computing provides a wide range of services to organisations in a flexible and cost efficient manner. Nevertheless, inherent cloud security issues make organisations hesitant towards the migration of their services to cloud. In parallel, the cloud service-oriented nature requires a specific and more demanding description of the business functional requirements intended for migration. Organisations need to transform their functional requirements based on a specific language, taking into account the respective non-functional requirements of the migrating services. Thus, the need for an approach that will holistically capture organisations' security and privacy requirements and transform them to cloud service requirements is immense. To this end, this paper presents an approach that takes as input abstract security and privacy requirements and produces through a semi-automatic process various alternative implementation options for cloud services. To achieve that a series of model transformations are utilised in order to create a mapping between the organisational and the operational level of the system's analysis.",
author = "Nikolaos Argyropoulos and Shaun Shei and Christos Kalloniatis and Haralambos Mouratidis and Aidan Delaney and Andrew Fish and Stefanos Gritzalis",
note = "Attribution-NonCommercial-NoDerivatives 4.0 International",
year = "2017",
month = "1",
day = "4",
language = "English",
isbn = "9780998133102",
pages = "4827--4836",
booktitle = "50th Hawaii International Conference on System Sciences (HICSS)",

}

Argyropoulos, N, Shei, S, Kalloniatis, C, Mouratidis, H, Delaney, A, Fish, A & Gritzalis, S 2017, A Semi-Automatic Approach for Eliciting Cloud Security and Privacy Requirements. in 50th Hawaii International Conference on System Sciences (HICSS). Hawaii, USA, pp. 4827-4836, 50th Hawaii International Conference on System Sciences (HICSS), 4/01/17.

A Semi-Automatic Approach for Eliciting Cloud Security and Privacy Requirements. / Argyropoulos, Nikolaos; Shei, Shaun; Kalloniatis, Christos; Mouratidis, Haralambos; Delaney, Aidan; Fish, Andrew; Gritzalis, Stefanos.

50th Hawaii International Conference on System Sciences (HICSS). Hawaii, USA, 2017. p. 4827-4836.

Research output: Chapter in Book/Conference proceeding with ISSN or ISBNConference contribution with ISSN or ISBNResearchpeer-review

TY - GEN

T1 - A Semi-Automatic Approach for Eliciting Cloud Security and Privacy Requirements

AU - Argyropoulos, Nikolaos

AU - Shei, Shaun

AU - Kalloniatis, Christos

AU - Mouratidis, Haralambos

AU - Delaney, Aidan

AU - Fish, Andrew

AU - Gritzalis, Stefanos

N1 - Attribution-NonCommercial-NoDerivatives 4.0 International

PY - 2017/1/4

Y1 - 2017/1/4

N2 - Cloud computing provides a wide range of services to organisations in a flexible and cost efficient manner. Nevertheless, inherent cloud security issues make organisations hesitant towards the migration of their services to cloud. In parallel, the cloud service-oriented nature requires a specific and more demanding description of the business functional requirements intended for migration. Organisations need to transform their functional requirements based on a specific language, taking into account the respective non-functional requirements of the migrating services. Thus, the need for an approach that will holistically capture organisations' security and privacy requirements and transform them to cloud service requirements is immense. To this end, this paper presents an approach that takes as input abstract security and privacy requirements and produces through a semi-automatic process various alternative implementation options for cloud services. To achieve that a series of model transformations are utilised in order to create a mapping between the organisational and the operational level of the system's analysis.

AB - Cloud computing provides a wide range of services to organisations in a flexible and cost efficient manner. Nevertheless, inherent cloud security issues make organisations hesitant towards the migration of their services to cloud. In parallel, the cloud service-oriented nature requires a specific and more demanding description of the business functional requirements intended for migration. Organisations need to transform their functional requirements based on a specific language, taking into account the respective non-functional requirements of the migrating services. Thus, the need for an approach that will holistically capture organisations' security and privacy requirements and transform them to cloud service requirements is immense. To this end, this paper presents an approach that takes as input abstract security and privacy requirements and produces through a semi-automatic process various alternative implementation options for cloud services. To achieve that a series of model transformations are utilised in order to create a mapping between the organisational and the operational level of the system's analysis.

M3 - Conference contribution with ISSN or ISBN

SN - 9780998133102

SP - 4827

EP - 4836

BT - 50th Hawaii International Conference on System Sciences (HICSS)

CY - Hawaii, USA

ER -

Argyropoulos N, Shei S, Kalloniatis C, Mouratidis H, Delaney A, Fish A et al. A Semi-Automatic Approach for Eliciting Cloud Security and Privacy Requirements. In 50th Hawaii International Conference on System Sciences (HICSS). Hawaii, USA. 2017. p. 4827-4836