Date Added: Mar 2014
Information always comes with security and risk problems. There is the saying that, \"The tall tree catches much wind,\" and the risks from cloud services will absolutely be more varied and more severe. Now-a-days, handling these risks is no longer just a technology problem. So far, a good deal of literature that focuses on risk or security management and frameworks in information systems has already been submitted. This paper analyzes the causal risk factors in cloud environments through critical success factors, from a business perspective. The authors then integrated these critical success factors into a business model for information security by mapping out 10 principles related to cloud risks.