Risk assessment model for cloud-connected networks with case study on an academic institution

Other Title(s)

نموذج تقييم المخاطر لشبكات الحاسوب الموصولة مع الخدمات السحابية للمؤسسات الأكاديمية

Author

Amr, Islam Yunus

Source

Palestinian Journal of Technology and Applied Sciences

Issue

Vol. 2022, Issue 5 (31 Jan. 2022), pp.30-43, 14 p.

Publisher

al-Quds Open University Deanship of Scientific Research and Graduate Studies

Publication Date

2022-01-31

Country of Publication

Palestine (West Bank)

No. of Pages

14

Main Subjects

Information Technology and Computer Science

Abstract EN

The reliance on cloud services has increased recently, resulting in an abundance of networks connected to these services partially or fully.

however, several risks emerge from this action that imposes new challenges.

organizations often maintain a range of services managed in its own local or expanded networks as well as services that could exist on the cloud services sites partially or totally.

organizations have to deal with two types of risks: the first relates to the internal information systems risk of the organization, and the second relates to risks that come with working with cloud services providers.

furthermore, organizations lack benchmarking and references on assessing information systems risks.

most organizations work with vulnerability management concepts rather than risk assessment and mitigation.

in this paper, we reformulate strategic e-services in an educational institution as it works between local networks and cloud services at the same time to study the risks associated with them in a hybrid manner.

these services are distributed over local network nodes and relevant cloud components.

the local network components and nodes ; represent hosts with known vulnerability values generated from commercial tools.

these vulnerabilities are gathered into vectors with expected impacts and estimate assets value related to these services.

probabilities or risks are identified accordingly.

the other component of the research considers analyzing the risk of the cloud services with the computational approach, but it deals with cloud standard components such as data management policies, internal cloud provider management, and internet security.

vulnerability in cloud providers is identified as the compromise of these components and their impact on business continuity.

using vulnerability concepts for both local network and cloud, we introduce a risk probability model for educational organization (e.g.: QOU) services where risks are estimated over borda count generated weights for both local network and cloud.

moreover, the overall risk is estimated independently for each component ; local network and two clouds.

the final step is to investigate the overall risk for the organization.

it will be done by prioritizing these risks mutually and analyzing the value of each risk in terms of other risks.

for this purpose, we use the analytic hierarchy process (AHP).

American Psychological Association (APA)

Amr, Islam Yunus. 2022. Risk assessment model for cloud-connected networks with case study on an academic institution. Palestinian Journal of Technology and Applied Sciences،Vol. 2022, no. 5, pp.30-43.
https://search.emarefa.net/detail/BIM-1405281

Modern Language Association (MLA)

Amr, Islam Yunus. Risk assessment model for cloud-connected networks with case study on an academic institution. Palestinian Journal of Technology and Applied Sciences No. 5 (Jan. 2022), pp.30-43.
https://search.emarefa.net/detail/BIM-1405281

American Medical Association (AMA)

Amr, Islam Yunus. Risk assessment model for cloud-connected networks with case study on an academic institution. Palestinian Journal of Technology and Applied Sciences. 2022. Vol. 2022, no. 5, pp.30-43.
https://search.emarefa.net/detail/BIM-1405281

Data Type

Journal Articles

Language

English

Notes

Includes bibliographical references : p. 42-43

Record ID

BIM-1405281