Cite Article

Risk Evaluation Using Nominal Group Technique for Cloud Computing Risk Assessment in Healthcare

Choose citation format

BibTeX

@article{IJASEIT10169,
   author = {Nurbaini Zainuddin and Rasimah Che Mohd Yusuff and Ganthan Narayana Samy},
   title = {Risk Evaluation Using Nominal Group Technique for Cloud Computing Risk Assessment in Healthcare},
   journal = {International Journal on Advanced Science, Engineering and Information Technology},
   volume = {10},
   number = {1},
   year = {2020},
   pages = {106--111},
   keywords = {cloud computing; risk assessment; nominal group technique; STRIDE-DREAD model; risk evaluation.},
   abstract = {Emerging of cloud computing with flexibility, improve accessing data, and cost-saving makes this technology accessible and growing fast. As a result of the emergence of cloud computing bring interest to industries to used cloud computing. Although cloud computing brings so many benefits to customers, the previous study reveals that cloud computing penetration in the Healthcare area is still low. With effective cloud risk assessment methodology will gain the confidence to cloud users in this technology. Study in cloud risk assessment methodology still infant and the complexity in identifying security risk still debating. This paper explores the risk assessment process by highlighting the method in the risk evaluation process. Risk evaluation is an essential phase in the risk assessment process. It compares the result from the risk analysis process and determines whether to accept or tolerate the risk criteria to decide on the risk analysis. In this study, the Nominal Group Technique (NGT) is introduced to compare risk analysis results in the earlier phase. Since risk evaluation based on organizational objectives, external and internal context and stakeholders' views, NGT is promising for effective results. This study not only contributing to the prioritizing list of risks and threats in a systematical manner but indirectly NGT process makes stakeholders aware of the current cloud security risk situation in the organization. Equal opportunity expressing views in this focus group discussion is hope can generate a brilliant solution in risk assessment results.},
   issn = {2088-5334},
   publisher = {INSIGHT - Indonesian Society for Knowledge and Human Development},
   url = {http://ijaseit.insightsociety.org/index.php?option=com_content&view=article&id=9&Itemid=1&article_id=10169},
   doi = {10.18517/ijaseit.10.1.10169}
}

EndNote

%A Zainuddin, Nurbaini
%A Mohd Yusuff, Rasimah Che
%A Samy, Ganthan Narayana
%D 2020
%T Risk Evaluation Using Nominal Group Technique for Cloud Computing Risk Assessment in Healthcare
%B 2020
%9 cloud computing; risk assessment; nominal group technique; STRIDE-DREAD model; risk evaluation.
%! Risk Evaluation Using Nominal Group Technique for Cloud Computing Risk Assessment in Healthcare
%K cloud computing; risk assessment; nominal group technique; STRIDE-DREAD model; risk evaluation.
%X Emerging of cloud computing with flexibility, improve accessing data, and cost-saving makes this technology accessible and growing fast. As a result of the emergence of cloud computing bring interest to industries to used cloud computing. Although cloud computing brings so many benefits to customers, the previous study reveals that cloud computing penetration in the Healthcare area is still low. With effective cloud risk assessment methodology will gain the confidence to cloud users in this technology. Study in cloud risk assessment methodology still infant and the complexity in identifying security risk still debating. This paper explores the risk assessment process by highlighting the method in the risk evaluation process. Risk evaluation is an essential phase in the risk assessment process. It compares the result from the risk analysis process and determines whether to accept or tolerate the risk criteria to decide on the risk analysis. In this study, the Nominal Group Technique (NGT) is introduced to compare risk analysis results in the earlier phase. Since risk evaluation based on organizational objectives, external and internal context and stakeholders' views, NGT is promising for effective results. This study not only contributing to the prioritizing list of risks and threats in a systematical manner but indirectly NGT process makes stakeholders aware of the current cloud security risk situation in the organization. Equal opportunity expressing views in this focus group discussion is hope can generate a brilliant solution in risk assessment results.
%U http://ijaseit.insightsociety.org/index.php?option=com_content&view=article&id=9&Itemid=1&article_id=10169
%R doi:10.18517/ijaseit.10.1.10169
%J International Journal on Advanced Science, Engineering and Information Technology
%V 10
%N 1
%@ 2088-5334

IEEE

Nurbaini Zainuddin,Rasimah Che Mohd Yusuff and Ganthan Narayana Samy,"Risk Evaluation Using Nominal Group Technique for Cloud Computing Risk Assessment in Healthcare," International Journal on Advanced Science, Engineering and Information Technology, vol. 10, no. 1, pp. 106-111, 2020. [Online]. Available: http://dx.doi.org/10.18517/ijaseit.10.1.10169.

RefMan/ProCite (RIS)

TY  - JOUR
AU  - Zainuddin, Nurbaini
AU  - Mohd Yusuff, Rasimah Che
AU  - Samy, Ganthan Narayana
PY  - 2020
TI  - Risk Evaluation Using Nominal Group Technique for Cloud Computing Risk Assessment in Healthcare
JF  - International Journal on Advanced Science, Engineering and Information Technology; Vol. 10 (2020) No. 1
Y2  - 2020
SP  - 106
EP  - 111
SN  - 2088-5334
PB  - INSIGHT - Indonesian Society for Knowledge and Human Development
KW  - cloud computing; risk assessment; nominal group technique; STRIDE-DREAD model; risk evaluation.
N2  - Emerging of cloud computing with flexibility, improve accessing data, and cost-saving makes this technology accessible and growing fast. As a result of the emergence of cloud computing bring interest to industries to used cloud computing. Although cloud computing brings so many benefits to customers, the previous study reveals that cloud computing penetration in the Healthcare area is still low. With effective cloud risk assessment methodology will gain the confidence to cloud users in this technology. Study in cloud risk assessment methodology still infant and the complexity in identifying security risk still debating. This paper explores the risk assessment process by highlighting the method in the risk evaluation process. Risk evaluation is an essential phase in the risk assessment process. It compares the result from the risk analysis process and determines whether to accept or tolerate the risk criteria to decide on the risk analysis. In this study, the Nominal Group Technique (NGT) is introduced to compare risk analysis results in the earlier phase. Since risk evaluation based on organizational objectives, external and internal context and stakeholders' views, NGT is promising for effective results. This study not only contributing to the prioritizing list of risks and threats in a systematical manner but indirectly NGT process makes stakeholders aware of the current cloud security risk situation in the organization. Equal opportunity expressing views in this focus group discussion is hope can generate a brilliant solution in risk assessment results.
UR  - http://ijaseit.insightsociety.org/index.php?option=com_content&view=article&id=9&Itemid=1&article_id=10169
DO  - 10.18517/ijaseit.10.1.10169

RefWorks

RT Journal Article
ID 10169
A1 Zainuddin, Nurbaini
A1 Mohd Yusuff, Rasimah Che
A1 Samy, Ganthan Narayana
T1 Risk Evaluation Using Nominal Group Technique for Cloud Computing Risk Assessment in Healthcare
JF International Journal on Advanced Science, Engineering and Information Technology
VO 10
IS 1
YR 2020
SP 106
OP 111
SN 2088-5334
PB INSIGHT - Indonesian Society for Knowledge and Human Development
K1 cloud computing; risk assessment; nominal group technique; STRIDE-DREAD model; risk evaluation.
AB Emerging of cloud computing with flexibility, improve accessing data, and cost-saving makes this technology accessible and growing fast. As a result of the emergence of cloud computing bring interest to industries to used cloud computing. Although cloud computing brings so many benefits to customers, the previous study reveals that cloud computing penetration in the Healthcare area is still low. With effective cloud risk assessment methodology will gain the confidence to cloud users in this technology. Study in cloud risk assessment methodology still infant and the complexity in identifying security risk still debating. This paper explores the risk assessment process by highlighting the method in the risk evaluation process. Risk evaluation is an essential phase in the risk assessment process. It compares the result from the risk analysis process and determines whether to accept or tolerate the risk criteria to decide on the risk analysis. In this study, the Nominal Group Technique (NGT) is introduced to compare risk analysis results in the earlier phase. Since risk evaluation based on organizational objectives, external and internal context and stakeholders' views, NGT is promising for effective results. This study not only contributing to the prioritizing list of risks and threats in a systematical manner but indirectly NGT process makes stakeholders aware of the current cloud security risk situation in the organization. Equal opportunity expressing views in this focus group discussion is hope can generate a brilliant solution in risk assessment results.
LK http://ijaseit.insightsociety.org/index.php?option=com_content&view=article&id=9&Itemid=1&article_id=10169
DO  - 10.18517/ijaseit.10.1.10169