Publication: Referente de auditoría para la reutilización de aplicaciones en modo servicio
No Thumbnail Available
Official URL
Full text at PDC
Publication Date
2015
Advisors (or tutors)
Editors
Journal Title
Journal ISSN
Volume Title
Publisher
Citations
Exportar
Abstract
El Cloud Computing es actualmente una pieza fundamental para la informática y para la sociedad. La importancia que ha adquirido este modelo pone de manifiesto la necesidad de establecer una normativa que regule el uso de este tipo de servicios, así como la seguridad de sus sistemas.
Las aplicaciones en modo servicio pueden ser ofrecidas al cliente a través de otros sistemas además de la nube. Sin embargo, dada su proyección, este trabajo tiene como finalidad focalizarse en este tipo de computación.
Este Trabajo de Fin de Grado se centra en la regulación de los elementos relevantes para las aplicaciones en modo servicio. Dentro de este contexto nos centraremos en el estudio del Software como Servicio (SaaS), dejando los otros dos modelos, Infraestructura como Servicio (IaaS) y Plataforma como Servicio (PaaS), para futuros estudios.
Los objetivos de este trabajo de investigación son:
Desarrollar un referente de auditoría propio para las aplicaciones en modo servicio.
Diseñar un proceso de auditoría propio y específico para este tipo de aplicaciones.
A la hora de desarrollar un referente de auditoría propio, se ha elaborado una lista de 10 controles que deberán ser verificados para un correcto cumplimiento del servicio. Entre ellos existen aportaciones nuevas por parte del investigador y otros indicadores ya existentes. Con respecto al diseño de un proceso de auditoría propio, se ha desarrollado un conjunto de 7 apartados totalmente nuevos que deben realizarse en una auditoría sobre este tipo de servicios.
Cloud Computing is currently a vital player for computing and for society in general. The importance that this model has acquired highlights the need for a clear regulation on the use of such services and the security of their systems. Applications in service mode may be offered to customers through other systems apart from the Cloud. However, given the scope of the project, this paper aims to focus on this type of computing. This Final Degree Project focuses on the regulation of the relevant elements for applications in service mode. Within this context, we will focus on the study of Software as a Service (SaaS), leaving the other two models, Infrastructure as a Service (IaaS) and Platform as a Service (PaaS), for future studies. The main goals of this research project are: To develop my own audit referent for applications in service mode. To design my own specific audit process for these applications. When developing my own audit referent, a list of 10 controls have been prepared. These controls must be verified to ensure proper performance of the service. Among them, there are some new contributions developed by the investigator as well as other existing indicators. Regarding the design of my own audit process, a completely new set of 7 sections have been developed, which must meet an audit on this kind of services.
Cloud Computing is currently a vital player for computing and for society in general. The importance that this model has acquired highlights the need for a clear regulation on the use of such services and the security of their systems. Applications in service mode may be offered to customers through other systems apart from the Cloud. However, given the scope of the project, this paper aims to focus on this type of computing. This Final Degree Project focuses on the regulation of the relevant elements for applications in service mode. Within this context, we will focus on the study of Software as a Service (SaaS), leaving the other two models, Infrastructure as a Service (IaaS) and Platform as a Service (PaaS), for future studies. The main goals of this research project are: To develop my own audit referent for applications in service mode. To design my own specific audit process for these applications. When developing my own audit referent, a list of 10 controls have been prepared. These controls must be verified to ensure proper performance of the service. Among them, there are some new contributions developed by the investigator as well as other existing indicators. Regarding the design of my own audit process, a completely new set of 7 sections have been developed, which must meet an audit on this kind of services.
Description
Trabajo de Fin de Grado en Ingeniería Informática (Universidad Complutense, Facultad de Informática, curso 2014/2015)