Preface

摘要

Enterprise security is an important area since all types of organizations require secure and robust environments, platforms, and services to work with people, data, and computing applications. There are instances where security breaches and privacy concerns have been the main factors preventing organizations from putting their resources in public and community domains. Even in private domains, there is no escape from the threats to cyber security, privacy, trust, and risk. We live in an information age whereby there is a massive and rapid dissemination of information. Protecting our data, privacy, and rights has become increasingly important regardless of where we are based and in which organization we work. Challenges such as data ownership, trust, unauthorized access, and big data management should be resolved by using innovative methods, models, frameworks, case studies, and analysis to reduce risks imposed by data leakage, hacking, breach of privacy, and abuse of data. To adopt the best practices, papers that can fully address security, privacy, and risk concerns are welcome. We seek papers from both technical security (theory, prototype, experiments, simulations, proofs-of-concept, and product development) and information system security (review, frameworks, best practices, statistical analysis based on surveys and recommendations) that provide good recommendations and research contributions to enterprise security. The best papers from the ES 2015 workshop were selected for this book. This book presents comprehensive and intensive research into various areas of enterprise security including a chapter on "Challenges of Cloud Forensics" by Hamid Jahankhani and Amin Hosseinian-Far, who discuss how cloud computing has generated significant interest in both academia and industry, but it is still an evolving paradigm. Cloud computing services are also a popular target for malicious activities, resulting in the exponential increase of cyber attacks. Digital evidence is the evidence that is collected from the suspect's workstations or electronic media that could be used to assist computer forensics investigations. Cloud forensics involves digital evidence collection in the cloud environment. The current established forensic procedures and process models require major changes in order to be acceptable in a cloud environment. This chapter aims to assess the challenges that forensic examiners face in tracking down and using digital information stored in the cloud and discusses the importance of education and training for handling, managing, and investigating computer evidence.