Abstract | ||
---|---|---|
More and more organizations are today using the cloud for their business as a quite convenient alternative to in-house solutions for storing, processing, and managing data. Cloud-based solutions are then permeating almost all aspects of business organizations, resulting appealing also for functions that, already in-house, may result sensitive or security critical, and whose enforcement in the cloud requires then particular care. In this paper, we provide an approach for securely relying on cloud-based services for the enforcement of Internal Controls and Audit (ICA) functions for corporate governance. Our approach is based on the use of selective encryption and of tags to provide a level of self-protection to data and for enabling only authorized parties to access data and perform operations on them, providing privacy and integrity guarantees, as well as accountability and non-repudiation. |
Year | DOI | Venue |
---|---|---|
2020 | 10.1109/CLOUD49709.2020.00067 | 2020 IEEE 13th International Conference on Cloud Computing (CLOUD) |
Keywords | DocType | ISSN |
Cloud-based services,outsourcing,internal controls and audit process,selective encryption | Conference | 2159-6182 |
ISBN | Citations | PageRank |
978-1-7281-8781-5 | 0 | 0.34 |
References | Authors | |
14 | 4 |
Name | Order | Citations | PageRank |
---|---|---|---|
Sabrina De Capitani Di Vimercati | 1 | 3991 | 350.57 |
S. Foresti | 2 | 1004 | 64.12 |
Stefano Paraboschi | 3 | 3590 | 450.24 |
Pierangela Samarati | 4 | 7152 | 785.82 |