{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,9,26]],"date-time":"2025-09-26T04:45:18Z","timestamp":1758861918474,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":30,"publisher":"ACM","license":[{"start":{"date-parts":[[2018,1,15]],"date-time":"2018-01-15T00:00:00Z","timestamp":1515974400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"name":"Alexander von Humboldt-Stiftung"},{"name":"Ministerio de Ciencia e Innovaci\u00f3n","award":["TEC2014-54335-C4-2-R and TEC2017-84197- C4-1-R"],"award-info":[{"award-number":["TEC2014-54335-C4-2-R and TEC2017-84197- C4-1-R"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2018,1,15]]},"DOI":"10.1145\/3267357.3267362","type":"proceedings-article","created":{"date-parts":[[2018,10,16]],"date-time":"2018-10-16T13:23:10Z","timestamp":1539696190000},"page":"18-26","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":3,"title":["FRiCS"],"prefix":"10.1145","author":[{"given":"Patricia","family":"Arias-Cabarcos","sequence":"first","affiliation":[{"name":"University of Mannheim, Mannheim, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Florina","family":"Almen\u00e1rez","sequence":"additional","affiliation":[{"name":"Universidad Carlos III de Madrid, Madrid, Spain"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Daniel","family":"D\u00edaz-S\u00e1nchez","sequence":"additional","affiliation":[{"name":"Universidad Carlos III de Madrid, Madrid, Spain"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Andr\u00e9s","family":"Mar\u00edn","sequence":"additional","affiliation":[{"name":"Universidad Carlos III de Madrid, Madrid, Spain"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2018,1,15]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"Proceedings of the VII Congreso Iberoamericano de Telem\u00c3\u00a1tica (CITA","author":"del \u00c1lamo Ramiro Jos\u00e9 Mar'ia","year":"2015","unstructured":"Jos\u00e9 Mar'ia del \u00c1lamo Ramiro , Rub\u00e9n Trapero Burgos , Yod Samuel Mart'in Garc'ia , Juan Carlos Yelmo Garcia , and Neeraj Suri . 2015 . Quantitative assessment and comparison of cloud service providers' privacy practices . In Proceedings of the VII Congreso Iberoamericano de Telem\u00c3\u00a1tica (CITA 2015). 165--172. Jos\u00e9 Mar'ia del \u00c1lamo Ramiro, Rub\u00e9n Trapero Burgos, Yod Samuel Mart'in Garc'ia, Juan Carlos Yelmo Garcia, and Neeraj Suri. 2015. Quantitative assessment and comparison of cloud service providers' privacy practices. In Proceedings of the VII Congreso Iberoamericano de Telem\u00c3\u00a1tica (CITA 2015). 165--172."},{"key":"e_1_3_2_1_2_1","unstructured":"Cloud Security Alliance. 2014. Cloud Control Matrix v3.0.1 . https:\/\/cloudsecurityalliance.org\/group\/cloud-controls-matrix\/  Cloud Security Alliance. 2014. Cloud Control Matrix v3.0.1 . https:\/\/cloudsecurityalliance.org\/group\/cloud-controls-matrix\/"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1109\/CLOUD.2011.9"},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10922-012-9244-2"},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1145\/2342509.2342513"},{"volume-title":"Introduction to the analytic hierarchy process","author":"Brunelli Matteo","key":"e_1_3_2_1_6_1","unstructured":"Matteo Brunelli . 2014. Introduction to the analytic hierarchy process . Springer . Matteo Brunelli. 2014. Introduction to the analytic hierarchy process .Springer."},{"key":"e_1_3_2_1_7_1","unstructured":"Scott Cantor Jahan Moreh Rob Philpott and Eve Maler. 2005. Metadata for the OASIS security assertion markup language (SAML) V2. 0.  Scott Cantor Jahan Moreh Rob Philpott and Eve Maler. 2005. Metadata for the OASIS security assertion markup language (SAML) V2. 0."},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.future.2015.09.031"},{"key":"e_1_3_2_1_9_1","unstructured":"Cloud Standard Customer Council. 2013. Cloud security standards: what to expect & what to negotiate.  Cloud Standard Customer Council. 2013. Cloud security standards: what to expect & what to negotiate."},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/TC.2015.2389952"},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1109\/UCC.2011.36"},{"key":"e_1_3_2_1_12_1","volume-title":"Retrieved","author":"Top Threats Working Group","year":"2013","unstructured":"Top Threats Working Group . 2013 . The notorious nine cloud computing top threats in 2013. (2013) . Retrieved August 21, 2018 from https:\/\/downloads.cloudsecurityalliance.org\/initiatives\/top_threats\/The_Notorious_Nine_Cloud_Computing_Top_Threats_in_2013.pdf. Top Threats Working Group. 2013. The notorious nine cloud computing top threats in 2013. (2013). Retrieved August 21, 2018 from https:\/\/downloads.cloudsecurityalliance.org\/initiatives\/top_threats\/The_Notorious_Nine_Cloud_Computing_Top_Threats_in_2013.pdf."},{"key":"e_1_3_2_1_13_1","volume-title":"Retrieved","author":"Top Threats Working Group","year":"2017","unstructured":"Top Threats Working Group . 2017 . The Treacherous 12: Cloud Computing Top Threats in 2016. (2017) . Retrieved August 21, 2018 from https:\/\/downloads. cloudsecurityalliance. org\/assets\/research\/topthreats\/Treacherous12_CloudComputing_TopThreats.pdf. Top Threats Working Group. 2017. The Treacherous 12: Cloud Computing Top Threats in 2016. (2017). Retrieved August 21, 2018 from https:\/\/downloads. cloudsecurityalliance. org\/assets\/research\/topthreats\/Treacherous12_CloudComputing_TopThreats.pdf."},{"key":"e_1_3_2_1_14_1","volume-title":"The health insurance portability and accountability act privacy rule: a practical guide for researchers. Medical care","author":"Gunn Patrick P","year":"2004","unstructured":"Patrick P Gunn , Allen M Fremont , Melissa Bottrell , Lisa R Shugarman , Jolene Galegher , and Tora Bikson . 2004. The health insurance portability and accountability act privacy rule: a practical guide for researchers. Medical care ( 2004 ), 321--327. Patrick P Gunn, Allen M Fremont, Melissa Bottrell, Lisa R Shugarman, Jolene Galegher, and Tora Bikson. 2004. The health insurance portability and accountability act privacy rule: a practical guide for researchers. Medical care (2004), 321--327."},{"volume-title":"Multi-criteria decision analysis: methods and software","author":"Ishizaka Alessio","key":"e_1_3_2_1_15_1","unstructured":"Alessio Ishizaka and Philippe Nemery . 2013. Multi-criteria decision analysis: methods and software . John Wiley & Sons . Alessio Ishizaka and Philippe Nemery. 2013. Multi-criteria decision analysis: methods and software .John Wiley & Sons."},{"volume-title":"Directions in security metrics research","author":"Jansen Wayne","key":"e_1_3_2_1_16_1","unstructured":"Wayne Jansen . 2010. Directions in security metrics research . Diane Publishing . Wayne Jansen. 2010. Directions in security metrics research .Diane Publishing."},{"volume-title":"Decisions with multiple objectives: preferences and value trade-offs","author":"Keeney Ralph L","key":"e_1_3_2_1_17_1","unstructured":"Ralph L Keeney and Howard Raiffa . 1993. Decisions with multiple objectives: preferences and value trade-offs . Cambridge university press . Ralph L Keeney and Howard Raiffa. 1993. Decisions with multiple objectives: preferences and value trade-offs .Cambridge university press."},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1145\/1879141.1879143"},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10586-017-0986-1"},{"key":"e_1_3_2_1_20_1","first-page":"1","article-title":"Quantitative reasoning about cloud security using service level agreements","volume":"1","author":"Luna Jesus","year":"2015","unstructured":"Jesus Luna , Ahmed Taha , Ruben Trapero , and Neeraj Suri . 2015 . Quantitative reasoning about cloud security using service level agreements . IEEE Transactions on Cloud Computing 1 (2015), 1 -- 1 . Jesus Luna, Ahmed Taha, Ruben Trapero, and Neeraj Suri. 2015. Quantitative reasoning about cloud security using service level agreements. IEEE Transactions on Cloud Computing 1 (2015), 1--1.","journal-title":"IEEE Transactions on Cloud Computing"},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10796-011-9317-x"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2016.06.003"},{"key":"e_1_3_2_1_23_1","volume-title":"In Proceedings of the AMIA Annual Symposium 2003 . American Medical Informatics Association, 953--953","author":"Noy Natalya Fridman","year":"2003","unstructured":"Natalya Fridman Noy , Monica Crub\u00e9zy , Ray W Fergerson , Holger Knublauch , Samson W Tu , Jennifer Vendetti , and Mark A Musen . 2003 . Prot\u00e9g\u00e9-2000: an open-source ontology-development and knowledge-acquisition environment .. In In Proceedings of the AMIA Annual Symposium 2003 . American Medical Informatics Association, 953--953 . Natalya Fridman Noy, Monica Crub\u00e9zy, Ray W Fergerson, Holger Knublauch, Samson W Tu, Jennifer Vendetti, and Mark A Musen. 2003. Prot\u00e9g\u00e9-2000: an open-source ontology-development and knowledge-acquisition environment.. In In Proceedings of the AMIA Annual Symposium 2003 . American Medical Informatics Association, 953--953."},{"volume-title":"Web Services Foundations","author":"Pautasso Cesare","key":"e_1_3_2_1_24_1","unstructured":"Cesare Pautasso . 2014. RESTful web services: principles, patterns, emerging technologies . In Web Services Foundations . Springer , 31--51. Cesare Pautasso. 2014. RESTful web services: principles, patterns, emerging technologies. In Web Services Foundations . Springer, 31--51."},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-54380-2_9"},{"volume-title":"How to make a decision: the analytic hierarchy process","author":"Saaty Thomas L","key":"e_1_3_2_1_26_1","unstructured":"Thomas L Saaty . 1990. How to make a decision: the analytic hierarchy process . Vol. 48 . Elsevier . 9--26 pages. Thomas L Saaty. 1990. How to make a decision: the analytic hierarchy process. Vol. 48. Elsevier. 9--26 pages."},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2017.08.016"},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.jnca.2014.07.019"},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1109\/TrustCom.2014.39"},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-1-4757-3157-6"}],"event":{"name":"CCS '18: 2018 ACM SIGSAC Conference on Computer and Communications Security","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"],"location":"Toronto Canada","acronym":"CCS '18"},"container-title":["Proceedings of the 2nd International Workshop on Multimedia Privacy and Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3267357.3267362","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3267357.3267362","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T00:57:43Z","timestamp":1750208263000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3267357.3267362"}},"subtitle":["A Framework for Risk-driven Cloud Selection"],"short-title":[],"issued":{"date-parts":[[2018,1,15]]},"references-count":30,"alternative-id":["10.1145\/3267357.3267362","10.1145\/3267357"],"URL":"https:\/\/doi.org\/10.1145\/3267357.3267362","relation":{},"subject":[],"published":{"date-parts":[[2018,1,15]]},"assertion":[{"value":"2018-01-15","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}