Appendix E. Cloud-Adapted Risk Management Framework


E.1 Security Conservation Principle

E.2 The Risk Management Framework

Risk management was introduced in Chapter 6 as a cyclically executed process comprising a set of coordinated activities for overseeing and controlling risks. This set of activities is composed of risk assessment, risk treatment, and risk control tasks that collectively target the enhancement of strategic and tactical security.

How confident cloud consumers feel about whether the amount of risk related to using cloud services is acceptable depends on how much trust they place on those involved in the surrounding cloud ecosystem’s ...

Get Cloud Computing: Concepts, Technology & Architecture now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.