{"id":"https://openalex.org/W2212985059","doi":"https://doi.org/10.1007/978-3-8348-9788-6_10","title":"Applying BMIS to Cloud Security","display_name":"Applying BMIS to Cloud Security","publication_year":2011,"publication_date":"2011-01-01","ids":{"openalex":"https://openalex.org/W2212985059","doi":"https://doi.org/10.1007/978-3-8348-9788-6_10","mag":"2212985059"},"language":"en","primary_location":{"id":"doi:10.1007/978-3-8348-9788-6_10","is_oa":false,"landing_page_url":"https://doi.org/10.1007/978-3-8348-9788-6_10","pdf_url":null,"source":{"id":"https://openalex.org/S4306464255","display_name":"Vieweg+Teubner eBooks","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"ebook platform"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ISSE 2010 Securing Electronic Business Processes","raw_type":"book-chapter"},"type":"book-chapter","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5066358162","display_name":"Rolf von R\u00f6ssing","orcid":null},"institutions":[{"id":"https://openalex.org/I4210122778","display_name":"University of Applied Sciences for Public Administration and Management","ror":"https://ror.org/02qbcmz19","country_code":"DE","type":"education","lineage":["https://openalex.org/I4210122778"]}],"countries":["DE"],"is_corresponding":true,"raw_author_name":"Rolf von R\u00f6ssing","raw_affiliation_strings":["Institute for Internet-Security, Gelsenkirchen University of Applied Sciences, Gelsenkirchen"],"affiliations":[{"raw_affiliation_string":"Institute for Internet-Security, Gelsenkirchen University of Applied Sciences, Gelsenkirchen","institution_ids":["https://openalex.org/I4210122778"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":["https://openalex.org/A5066358162"],"corresponding_institution_ids":["https://openalex.org/I4210122778"],"apc_list":null,"apc_paid":null,"fwci":2.4506,"has_fulltext":false,"cited_by_count":2,"citation_normalized_percentile":{"value":0.89750329,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":94,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"101","last_page":"112"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T14280","display_name":"Big Data Technologies and Applications","score":0.9645000100135803,"subfield":{"id":"https://openalex.org/subfields/1802","display_name":"Information Systems and Management"},"field":{"id":"https://openalex.org/fields/18","display_name":"Decision Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},"topics":[{"id":"https://openalex.org/T14280","display_name":"Big Data Technologies and Applications","score":0.9645000100135803,"subfield":{"id":"https://openalex.org/subfields/1802","display_name":"Information Systems and Management"},"field":{"id":"https://openalex.org/fields/18","display_name":"Decision Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T11719","display_name":"Data Quality and Management","score":0.9239000082015991,"subfield":{"id":"https://openalex.org/subfields/1803","display_name":"Management Science and Operations Research"},"field":{"id":"https://openalex.org/fields/18","display_name":"Decision Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T11573","display_name":"Risk Perception and Management","score":0.9118000268936157,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5910878777503967},{"id":"https://openalex.org/keywords/cobit","display_name":"COBIT","score":0.5772386789321899},{"id":"https://openalex.org/keywords/outsourcing","display_name":"Outsourcing","score":0.5640856027603149},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.5498318076133728},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.5012040138244629},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.47542789578437805},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.44532012939453125},{"id":"https://openalex.org/keywords/process-management","display_name":"Process management","score":0.38344311714172363},{"id":"https://openalex.org/keywords/information-technology","display_name":"Information technology","score":0.3623237907886505},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.3421446681022644}],"concepts":[{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5910878777503967},{"id":"https://openalex.org/C2776723946","wikidata":"https://www.wikidata.org/wiki/Q544025","display_name":"COBIT","level":3,"score":0.5772386789321899},{"id":"https://openalex.org/C46934059","wikidata":"https://www.wikidata.org/wiki/Q61515","display_name":"Outsourcing","level":2,"score":0.5640856027603149},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.5498318076133728},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.5012040138244629},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.47542789578437805},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.44532012939453125},{"id":"https://openalex.org/C195094911","wikidata":"https://www.wikidata.org/wiki/Q14167904","display_name":"Process management","level":1,"score":0.38344311714172363},{"id":"https://openalex.org/C121017731","wikidata":"https://www.wikidata.org/wiki/Q11661","display_name":"Information technology","level":2,"score":0.3623237907886505},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.3421446681022644},{"id":"https://openalex.org/C162853370","wikidata":"https://www.wikidata.org/wiki/Q39809","display_name":"Marketing","level":1,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1007/978-3-8348-9788-6_10","is_oa":false,"landing_page_url":"https://doi.org/10.1007/978-3-8348-9788-6_10","pdf_url":null,"source":{"id":"https://openalex.org/S4306464255","display_name":"Vieweg+Teubner eBooks","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"ebook platform"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ISSE 2010 Securing Electronic Business Processes","raw_type":"book-chapter"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":6,"referenced_works":["https://openalex.org/W1773196225","https://openalex.org/W2000368687","https://openalex.org/W2091069417","https://openalex.org/W2138502710","https://openalex.org/W2143866666","https://openalex.org/W2290660652"],"related_works":["https://openalex.org/W2931996793","https://openalex.org/W4205234238","https://openalex.org/W2788934790","https://openalex.org/W3167767780","https://openalex.org/W3148880067","https://openalex.org/W4205923274","https://openalex.org/W3043682580","https://openalex.org/W2941559775","https://openalex.org/W3142266060","https://openalex.org/W2593645431"],"abstract_inverted_index":{"Recent":[0],"developments":[1],"in":[2,98,151,182,223,266],"information":[3,228],"technology":[4],"operations":[5],"have":[6,15],"shown":[7,211],"two":[8],"distinct":[9],"trends.":[10],"Firstly,":[11],"products":[12,179],"and":[13,26,35,48,68,127,134,146,161,180,197,217],"services":[14,40,181],"become":[16],"increasingly":[17],"commoditised,":[18],"thus":[19],"leading":[20],"to":[21,76,225,259],"successive":[22],"waves":[23],"of":[24,31,38,45,90,156,184,201,214,263],"outsourcing":[25,99],"offshoring.":[27],"Secondly,":[28],"the":[29,43,54,65,87,116,154,192,199,204,252,264],"introduction":[30],"intelligent":[32],"end-point":[33],"devices":[34],"direct":[36,261],"accessibility":[37],"webbased":[39],"has":[41],"blurred":[42],"boundaries":[44],"traditional":[46],"companies":[47],"their":[49,185],"perimeter.":[50],"As":[51],"a":[52,91,109,141,173,241],"result,":[53],"\u201ccloud":[55],"computing\u201d":[56],"paradigm":[57],"creates":[58],"new":[59,79],"challenges":[60],"for":[61,139,168,176],"security":[62,72,186,206,229,268],"management,":[63],"including":[64],"business":[66,110,232],"value":[67],"cost-benefit":[69],"considerations.":[70],"Traditional":[71],"models":[73],"often":[74],"fail":[75],"address":[77],"this":[78,124],"universe,":[80],"inasmuch":[81],"as":[82,108,130,249],"they":[83],"are":[84,103,136,257],"based":[85],"upon":[86],"axiomatic":[88],"idea":[89],"\u201cclosed\u201d":[92],"corporate":[93],"IT":[94,144],"environment.":[95],"Practical":[96],"difficulties":[97],"or":[100,118,251],"third-party":[101],"situations":[102],"therefore,":[104],"at":[105,115],"best,":[106],"treated":[107],"issue":[111],"that":[112],"is":[113,195,209],"addressed":[114],"contractual":[117],"legal":[119,126,162],"level.":[120,207],"In":[121],"many":[122],"instances,":[123],"causes":[125],"technical":[128],"problems,":[129],"service":[131],"level":[132],"agreements":[133],"contracts":[135],"flawed":[137],"instruments":[138],"describing":[140],"fully":[142],"de-perimeterised":[143],"environment":[145,244],"its":[147],"practical":[148,237],"requirements.":[149,233],"This":[150],"turn":[152],"increases":[153],"risk":[155,216],"systemic":[157,174],"failures,":[158],"operational":[159,227],"damage,":[160],"ramifications.":[163],"The":[164,188,234],"ISACA":[165],"Business":[166],"Model":[167],"Information":[169],"Security":[170],"(BMIS)":[171],"provides":[172],"foundation":[175],"managing":[177],"cloud-based":[178],"terms":[183],"aspects.":[187],"paper":[189,235],"shows":[190],"how":[191,198,212],"general":[193],"model":[194],"applied":[196],"use":[200,262],"BMIS":[202,265],"enhances":[203],"overall":[205],"It":[208],"further":[210],"aspects":[213],"governance,":[215],"compliance":[218],"(GRC)":[219],"may":[220],"be":[221],"included":[222],"order":[224],"align":[226],"management":[230],"with":[231],"addresses":[236],"steps":[238],"towards":[239],"securing":[240],"heavily":[242],"clouded":[243],"using":[245],"recognised":[246],"frameworks":[247],"such":[248],"COBIT":[250],"ISO":[253],"27000":[254],"series.":[255],"Recommendations":[256],"given":[258],"enable":[260],"day-to-day":[267],"management.":[269]},"counts_by_year":[{"year":2014,"cited_by_count":2}],"updated_date":"2026-02-25T21:11:00.739837","created_date":"2025-10-10T00:00:00"}