Information Security in Business Intelligence based on Cloud: A Survey of Key Issues and the Premises of a Proposal

Elena Jaramillo, Manuel Munier, Philippe Aniorté

juillet 2013

Résumé

More sophisticated inter-organizational interactions have generated changes in the way in which organizations make business. Advanced forms of collaborations, such as Business Process as a Service (BPaaS), allow different partners to leverage business intelligence within organizations. However, although it presents powerfull economical and technical benefits, it also arrises some pitfalls about data security, especially when it is mediated by the cloud. In this article, current aspects which have been tackled in the literature related to data risks and accountability are presented. In addition, some open issues are also presented from the analysis of the existing methodologies and techniques proposed in the literature. A final point is made by proposing an approach, which aims at preventive, detective and corrective accountability and data risk management, based on usage control policies and model driven engineering.

Type

Article de conférence

Publication

In 10th International Workshop on Security in Information Systems (WOSIS'2013) → In conjunction with the 15th International Conference on Enterprise Information Systems (ICEIS'2013)

Classement

ERA C

Lieu

Angers, France, July 5, 2013

Mots clés

data security, cloud computing, accountability, business intelligence

Note

Ce travail est soutenu par le Conseil Général des Landes (bourse de doctorat à E.J.).

information security usage control

Manuel Munier

Maître de Conférences HC en Informatique

Mes activités de recherche concernent la sécurité de l’information, la gestion des risques et le droit & numérique.