Open Access

ARTICLE

A Data Security Framework for Cloud Computing Services

Luis-Eduardo Bautista-Villalpando^1,*, Alain Abran²
1 Department of Electronic Systems, Autonomous University of Aguascalientes, Aguascalientes, 20131, Mexico
2 Department of Software Engineering and Information Technology, ETS, University of Quebec, Montreal, H3C 1K3, Canada
* Corresponding Author: Luis-Eduardo Bautista-Villalpando. Email:
(This article belongs to this Special Issue: Cloud, SDN, and NFV architectures for next generation IoT infrastructures)

Computer Systems Science and Engineering 2021, 37(2), 203-218. https://doi.org/10.32604/csse.2021.015437

Received 21 November 2020; Accepted 16 December 2020; Issue published 01 March 2021

Abstract

Cyberattacks are difficult to prevent because the targeted companies and organizations are often relying on new and fundamentally insecure cloud-based technologies, such as the Internet of Things. With increasing industry adoption and migration of traditional computing services to the cloud, one of the main challenges in cybersecurity is to provide mechanisms to secure these technologies. This work proposes a Data Security Framework for cloud computing services (CCS) that evaluates and improves CCS data security from a software engineering perspective by evaluating the levels of security within the cloud computing paradigm using engineering methods and techniques applied to CCS. This framework is developed by means of a methodology based on a heuristic theory that incorporates knowledge generated by existing works as well as the experience of their implementation. The paper presents the design details of the framework, which consists of three stages: identification of data security requirements, management of data security risks and evaluation of data security performance in CCS.

---

Keywords

Cloud computing; services; computer security; data security; data security requirements; data risk; data security measurement

---