Individuals and corporate users are persistently considering cloud adoption due to itsudsignificant benefits compared to traditional computing environments. The data and applicationsudin the cloud are stored in an environment that is separated, managed and maintained externallyudto the organisation. Therefore, it is essential for cloud providers to demonstrate and implementudadequate security practices to protect the data and processes put under their stewardship. Securityudtransparency in the cloud is likely to become the core theme that underpins the systematic disclosureudof security designs and practices that enhance customer confidence in using cloud service anduddeployment models. In this paper, we present a framework that enables a detailed analysis ofudsecurity transparency for cloud based systems. In particular, we consider security transparency fromudthree different levels of abstraction, i.e., conceptual, organisation and technical levels, and identifyudthe relevant concepts within these levels. This allows us to provide an elaboration of the essentialudconcepts at the core of transparency and analyse the means for implementing them from a technicaludperspective. Finally, an example from a real world migration context is given to provide a soliduddiscussion on the applicability of the proposed framework.
展开▼