| Article ID | Journal | Published Year | Pages | File Type |
|---|---|---|---|---|
| 453375 | Computer Standards & Interfaces | 2013 | 5 Pages |
Globalization has resulted in outsourcing data, software, hardware and various services. However, outsourcing introduces new security vulnerabilities due to the corporation's limited knowledge and control of external providers operating in foreign countries. Security of operation is therefore critical for effectively introducing and maintaining these business relationships without sacrificing product quality. This paper discusses some of these security concerns for outsourcing. In particular, it discusses security issues pertaining to data-as-a-service and software-as-a-service models as well as supply chain security issues. Relevant standards for data outsourcing are also presented. The goal is for the composite system to be secure even if the individual components that are developed by multiple organizations might be compromised.
► Security concerns pertaining to data- and software-as-a-service models are discussed. ► Solutions that secure composite systems containing untrusted components are analyzed. ► The analysis highlights ramifications for supply chain security and data outsourcing.
