Challenges in moving to cloud computing environment case Finnish teleoperator

Pilvipohjaisista palveluista on tullut erittäin suosittuja yritysten kesken. Pilvi tuo mukanaan monia hyötyjä ja mahdollisuuksia yrityksille, mutta se tuo myös epävarmuutta ja haasteita datan turvallisuuteen ja yksityisyyteen. Henkilötietojen yksityisyydestä on tullut tarkempaa ja määräykset ja lai...

Full description

Bibliographic Details
Main Author:	Buure, Otto
Other Authors:	Informaatioteknologian tiedekunta, Faculty of Information Technology, Informaatioteknologia, Information Technology, Jyväskylän yliopisto, University of Jyväskylä
Format:	Master's thesis
Language:	eng
Published:	2020
Subjects:	pilvi pilvilaskenta pilviympäristö pilvitietoturva GDPR Tietojärjestelmätiede Information Systems Science 601 pilvipalvelut tietoturva cloud services data security
Online Access:	https://jyx.jyu.fi/handle/123456789/68614

_version_	1826225750410264576
author	Buure, Otto
author2	Informaatioteknologian tiedekunta Faculty of Information Technology Informaatioteknologia Information Technology Jyväskylän yliopisto University of Jyväskylä
author_facet	Buure, Otto Informaatioteknologian tiedekunta Faculty of Information Technology Informaatioteknologia Information Technology Jyväskylän yliopisto University of Jyväskylä Buure, Otto Informaatioteknologian tiedekunta Faculty of Information Technology Informaatioteknologia Information Technology Jyväskylän yliopisto University of Jyväskylä
author_sort	Buure, Otto
datasource_str_mv	jyx
description	Pilvipohjaisista palveluista on tullut erittäin suosittuja yritysten kesken. Pilvi tuo mukanaan monia hyötyjä ja mahdollisuuksia yrityksille, mutta se tuo myös epävarmuutta ja haasteita datan turvallisuuteen ja yksityisyyteen. Henkilötietojen yksityisyydestä on tullut tarkempaa ja määräykset ja lainsäädännöt kuten EU:n yleinen tietosuoja-asetus (eng. EU General Data Protection Regulation, GDPR) ovat puuttuneet siihen miten yritysten täytyy käsitellä asiakkaidensa henkilötietoja siten, että yksityisyys säilyy. Tämä pro gradu -tutkielma tutkii mitä muutoksia pilviympäristöön siirtyminen aiheuttaa verrattuna perinteisiin tietojärjestelmiin. Tutkimus keskittyy kontrollin muutokseen, jonka pilvi aiheuttaa ja kuinka organisaatiot voivat säilyttää kontrollia pilvessä. Tämä tutkimus myös pyrkii selventämään EU:n yleisen tietosuoja-asetuksen tavoitteita ja mitä ne tarkoittavat yrityksille, jotka käyttävät tai aikovat ottaa pilven käyttöön. Pilvi eroaa perinteisistä tietojärjestelmistä monin tavoin, mutta jo olemassa olevia käytännöllisiä tietoturvamekanismeja voidaan hyödyntää tietoturvan ja yksityisyyden turvaamiseen pilvessä jos organisaatiot tietävät mitä ovat tekemässä. Kontrollin määrä järjestelmiin vähenee, kun siirrytään pilveen, mutta kontrollin vähenemistä voidaan pitää kurissa yritysten välisillä sopimuksilla ja oikeanlaisilla tietoturvamekanismeilla. Viranomaisten ohjeistukset yrityksille tarvitsevat päivitystä, jotta ne kattaisivat myös tarvittavat toimet, joita organisaatioiden tulee tehdä, jotta varmistutaan siitä ettei lainsäädännön noudattamisesta tule liian monimutkaista. Pilvi on avoinna internetiin, joten sen tietoturva vaatii uudenlaista ajattelua. Varotoimena organisaatioiden tulee panostaa yleiseen tietoisuuteen pilviympäristöistä kaikille työntekijöille, joka voi yksinkertaistaa pilvessä hyödynnettävien tietoturvamekanismien suunnittelua. Tietoisuus organisaation sisällä voi myös pienentää tietoturvan ja yksityisyyden riskiä, jossa arkaluonteista dataa tallennetaan ja käsitellään pilvipalvelussa tai pilvijärjestelmässä, jonka tietoturva ei ole riittävällä tasolla. Cloud based services are extremely popular among organization today. Cloud brings many benefits and opportunities for companies, but it also brings uncertainty and challenges of data security and privacy. The privacy of personal data has become more precise and regulations and legislations like EU General Data Protection Regulation (GDPR) has intervened how companies must process customers personal data so that the privacy remains. This Master’s Thesis explores what changes moving to a cloud computing environment causes compared to a traditional information system. The research focuses on the change of control cloud causes and how organizations can preserve the control in the cloud. This research also aims to clarify the goals of the GDPR and what it means to a companies that are using or intending to adopt a cloud. Cloud differs from a traditional on-premise information systems (IS) in many ways, but the existing practical security mechanisms can be utilized to ensure security and privacy in the cloud if organizations know what they are doing. The amount of control over the system decreases when moving to a cloud but this can be mitigated by contracts and agreements and proper security mechanisms. The official guidelines organizations get need to be updated to cover the tangible actions organizations need to take to ensure that following the regulations does not become too complex. Cloud is open to the internet and it requires a new kind of thinking when it comes to security. As a precaution, organizations need to invest in improving the general awareness of cloud computing among the employees that will simplify the designing of the security mechanisms that are utilized with the cloud. The awareness among organization can mitigate the security and privacy risk of sensitive data being stored and processed in cloud service or systems with insufficient security level.
first_indexed	2020-04-21T20:07:38Z
format	Pro gradu
free_online_boolean	1
fullrecord	[{"key": "dc.contributor.advisor", "value": "Semenov, Alexander", "language": "", "element": "contributor", "qualifier": "advisor", "schema": "dc"}, {"key": "dc.contributor.author", "value": "Buure, Otto", "language": "", "element": "contributor", "qualifier": "author", "schema": "dc"}, {"key": "dc.date.accessioned", "value": "2020-04-21T11:13:49Z", "language": null, "element": "date", "qualifier": "accessioned", "schema": "dc"}, {"key": "dc.date.available", "value": "2020-04-21T11:13:49Z", "language": null, "element": "date", "qualifier": "available", "schema": "dc"}, {"key": "dc.date.issued", "value": "2020", "language": "", "element": "date", "qualifier": "issued", "schema": "dc"}, {"key": "dc.identifier.uri", "value": "https://jyx.jyu.fi/handle/123456789/68614", "language": null, "element": "identifier", "qualifier": "uri", "schema": "dc"}, {"key": "dc.description.abstract", "value": "Pilvipohjaisista palveluista on tullut eritt\u00e4in suosittuja yritysten kesken. Pilvi\ntuo mukanaan monia hy\u00f6tyj\u00e4 ja mahdollisuuksia yrityksille, mutta se tuo my\u00f6s\n\nep\u00e4varmuutta ja haasteita datan turvallisuuteen ja yksityisyyteen. Henkil\u00f6tietojen yksityisyydest\u00e4 on tullut tarkempaa ja m\u00e4\u00e4r\u00e4ykset ja lains\u00e4\u00e4d\u00e4nn\u00f6t kuten\n\nEU:n yleinen tietosuoja-asetus (eng. EU General Data Protection Regulation,\nGDPR) ovat puuttuneet siihen miten yritysten t\u00e4ytyy k\u00e4sitell\u00e4 asiakkaidensa\nhenkil\u00f6tietoja siten, ett\u00e4 yksityisyys s\u00e4ilyy. T\u00e4m\u00e4 pro gradu -tutkielma tutkii\nmit\u00e4 muutoksia pilviymp\u00e4rist\u00f6\u00f6n siirtyminen aiheuttaa verrattuna perinteisiin\n\ntietoj\u00e4rjestelmiin. Tutkimus keskittyy kontrollin muutokseen, jonka pilvi aiheuttaa ja kuinka organisaatiot voivat s\u00e4ilytt\u00e4\u00e4 kontrollia pilvess\u00e4. T\u00e4m\u00e4 tutkimus my\u00f6s pyrkii selvent\u00e4m\u00e4\u00e4n EU:n yleisen tietosuoja-asetuksen tavoitteita ja\n\nmit\u00e4 ne tarkoittavat yrityksille, jotka k\u00e4ytt\u00e4v\u00e4t tai aikovat ottaa pilven k\u00e4ytt\u00f6\u00f6n.\n\nPilvi eroaa perinteisist\u00e4 tietoj\u00e4rjestelmist\u00e4 monin tavoin, mutta jo olemassa olevia k\u00e4yt\u00e4nn\u00f6llisi\u00e4 tietoturvamekanismeja voidaan hy\u00f6dynt\u00e4\u00e4 tietoturvan ja yksityisyyden turvaamiseen pilvess\u00e4 jos organisaatiot tiet\u00e4v\u00e4t mit\u00e4 ovat tekem\u00e4ss\u00e4. Kontrollin m\u00e4\u00e4r\u00e4 j\u00e4rjestelmiin v\u00e4henee, kun siirryt\u00e4\u00e4n pilveen, mutta kontrollin v\u00e4henemist\u00e4 voidaan pit\u00e4\u00e4 kurissa yritysten v\u00e4lisill\u00e4 sopimuksilla ja oikeanlaisilla tietoturvamekanismeilla. Viranomaisten ohjeistukset yrityksille tarvitsevat p\u00e4ivityst\u00e4, jotta ne kattaisivat my\u00f6s tarvittavat toimet, joita organisaatioiden tulee tehd\u00e4, jotta varmistutaan siit\u00e4 ettei lains\u00e4\u00e4d\u00e4nn\u00f6n noudattamisesta\n\ntule liian monimutkaista. Pilvi on avoinna internetiin, joten sen tietoturva vaatii\nuudenlaista ajattelua. Varotoimena organisaatioiden tulee panostaa yleiseen\ntietoisuuteen pilviymp\u00e4rist\u00f6ist\u00e4 kaikille ty\u00f6ntekij\u00f6ille, joka voi yksinkertaistaa\n\npilvess\u00e4 hy\u00f6dynnett\u00e4vien tietoturvamekanismien suunnittelua. Tietoisuus organisaation sis\u00e4ll\u00e4 voi my\u00f6s pienent\u00e4\u00e4 tietoturvan ja yksityisyyden riski\u00e4, jossa\n\narkaluonteista dataa tallennetaan ja k\u00e4sitell\u00e4\u00e4n pilvipalvelussa tai pilvij\u00e4rjestelm\u00e4ss\u00e4, jonka tietoturva ei ole riitt\u00e4v\u00e4ll\u00e4 tasolla.", "language": "fi", "element": "description", "qualifier": "abstract", "schema": "dc"}, {"key": "dc.description.abstract", "value": "Cloud based services are extremely popular among organization today. Cloud\n\nbrings many benefits and opportunities for companies, but it also brings uncertainty and challenges of data security and privacy. The privacy of personal data\n\nhas become more precise and regulations and legislations like EU General Data\nProtection Regulation (GDPR) has intervened how companies must process\n\ncustomers personal data so that the privacy remains. This Master\u2019s Thesis explores what changes moving to a cloud computing environment causes compared to a traditional information system. The research focuses on the change of\n\ncontrol cloud causes and how organizations can preserve the control in the\ncloud. This research also aims to clarify the goals of the GDPR and what it\n\nmeans to a companies that are using or intending to adopt a cloud. Cloud differs from a traditional on-premise information systems (IS) in many ways, but\n\nthe existing practical security mechanisms can be utilized to ensure security and\nprivacy in the cloud if organizations know what they are doing. The amount of\n\ncontrol over the system decreases when moving to a cloud but this can be mitigated by contracts and agreements and proper security mechanisms. The official guidelines organizations get need to be updated to cover the tangible actions organizations need to take to ensure that following the regulations does not\n\nbecome too complex. Cloud is open to the internet and it requires a new kind of\n\nthinking when it comes to security. As a precaution, organizations need to invest in improving the general awareness of cloud computing among the employees that will simplify the designing of the security mechanisms that are utilized with the cloud. The awareness among organization can mitigate the security and privacy risk of sensitive data being stored and processed in cloud service or systems with insufficient security level.", "language": "en", "element": "description", "qualifier": "abstract", "schema": "dc"}, {"key": "dc.description.provenance", "value": "Submitted by Paivi Vuorio (paelvuor@jyu.fi) on 2020-04-21T11:13:49Z\nNo. of bitstreams: 0", "language": "en", "element": "description", "qualifier": "provenance", "schema": "dc"}, {"key": "dc.description.provenance", "value": "Made available in DSpace on 2020-04-21T11:13:49Z (GMT). No. of bitstreams: 0\n Previous issue date: 2020", "language": "en", "element": "description", "qualifier": "provenance", "schema": "dc"}, {"key": "dc.format.extent", "value": "67", "language": "", "element": "format", "qualifier": "extent", "schema": "dc"}, {"key": "dc.format.mimetype", "value": "application/pdf", "language": null, "element": "format", "qualifier": "mimetype", "schema": "dc"}, {"key": "dc.language.iso", "value": "eng", "language": null, "element": "language", "qualifier": "iso", "schema": "dc"}, {"key": "dc.rights", "value": "In Copyright", "language": "en", "element": "rights", "qualifier": null, "schema": "dc"}, {"key": "dc.subject.other", "value": "pilvi", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.subject.other", "value": "pilvilaskenta", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.subject.other", "value": "pilviymp\u00e4rist\u00f6", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.subject.other", "value": "pilvitietoturva", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.subject.other", "value": "GDPR", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.title", "value": "Challenges in moving to cloud computing environment : case Finnish teleoperator", "language": "", "element": "title", "qualifier": null, "schema": "dc"}, {"key": "dc.type", "value": "master thesis", "language": null, "element": "type", "qualifier": null, "schema": "dc"}, {"key": "dc.identifier.urn", "value": "URN:NBN:fi:jyu-202004212826", "language": "", "element": "identifier", "qualifier": "urn", "schema": "dc"}, {"key": "dc.type.ontasot", "value": "Pro gradu -tutkielma", "language": "fi", "element": "type", "qualifier": "ontasot", "schema": "dc"}, {"key": "dc.type.ontasot", "value": "Master\u2019s thesis", "language": "en", "element": "type", "qualifier": "ontasot", "schema": "dc"}, {"key": "dc.contributor.faculty", "value": "Informaatioteknologian tiedekunta", "language": "fi", "element": "contributor", "qualifier": "faculty", "schema": "dc"}, {"key": "dc.contributor.faculty", "value": "Faculty of Information Technology", "language": "en", "element": "contributor", "qualifier": "faculty", "schema": "dc"}, {"key": "dc.contributor.department", "value": "Informaatioteknologia", "language": "fi", "element": "contributor", "qualifier": "department", "schema": "dc"}, {"key": "dc.contributor.department", "value": "Information Technology", "language": "en", "element": "contributor", "qualifier": "department", "schema": "dc"}, {"key": "dc.contributor.organization", "value": "Jyv\u00e4skyl\u00e4n yliopisto", "language": "fi", "element": "contributor", "qualifier": "organization", "schema": "dc"}, {"key": "dc.contributor.organization", "value": "University of Jyv\u00e4skyl\u00e4", "language": "en", "element": "contributor", "qualifier": "organization", "schema": "dc"}, {"key": "dc.subject.discipline", "value": "Tietoj\u00e4rjestelm\u00e4tiede", "language": "fi", "element": "subject", "qualifier": "discipline", "schema": "dc"}, {"key": "dc.subject.discipline", "value": "Information Systems Science", "language": "en", "element": "subject", "qualifier": "discipline", "schema": "dc"}, {"key": "yvv.contractresearch.collaborator", "value": "business", "language": "", "element": "contractresearch", "qualifier": "collaborator", "schema": "yvv"}, {"key": "yvv.contractresearch.funding", "value": "10000", "language": "", "element": "contractresearch", "qualifier": "funding", "schema": "yvv"}, {"key": "yvv.contractresearch.initiative", "value": "student", "language": "", "element": "contractresearch", "qualifier": "initiative", "schema": "yvv"}, {"key": "dc.type.coar", "value": "http://purl.org/coar/resource_type/c_bdcc", "language": null, "element": "type", "qualifier": "coar", "schema": "dc"}, {"key": "dc.rights.accesslevel", "value": "openAccess", "language": null, "element": "rights", "qualifier": "accesslevel", "schema": "dc"}, {"key": "dc.type.publication", "value": "masterThesis", "language": null, "element": "type", "qualifier": "publication", "schema": "dc"}, {"key": "dc.subject.oppiainekoodi", "value": "601", "language": "", "element": "subject", "qualifier": "oppiainekoodi", "schema": "dc"}, {"key": "dc.subject.yso", "value": "pilvipalvelut", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "tietoturva", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "cloud services", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "data security", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.format.content", "value": "fulltext", "language": null, "element": "format", "qualifier": "content", "schema": "dc"}, {"key": "dc.rights.url", "value": "https://rightsstatements.org/page/InC/1.0/", "language": null, "element": "rights", "qualifier": "url", "schema": "dc"}, {"key": "dc.type.okm", "value": "G2", "language": null, "element": "type", "qualifier": "okm", "schema": "dc"}]
id	jyx.123456789_68614
language	eng
last_indexed	2025-02-18T10:55:38Z
main_date	2020-01-01T00:00:00Z
main_date_str	2020
online_boolean	1
online_urls_str_mv	{"url":"https:\/\/jyx.jyu.fi\/bitstreams\/0d912765-c418-4d64-b861-5dd0e0fa896c\/download","text":"URN:NBN:fi:jyu-202004212826.pdf","source":"jyx","mediaType":"application\/pdf"}
publishDate	2020
record_format	qdc
source_str_mv	jyx
spellingShingle	Buure, Otto Challenges in moving to cloud computing environment : case Finnish teleoperator pilvi pilvilaskenta pilviympäristö pilvitietoturva GDPR Tietojärjestelmätiede Information Systems Science 601 pilvipalvelut tietoturva cloud services data security
title	Challenges in moving to cloud computing environment : case Finnish teleoperator
title_full	Challenges in moving to cloud computing environment : case Finnish teleoperator
title_fullStr	Challenges in moving to cloud computing environment : case Finnish teleoperator Challenges in moving to cloud computing environment : case Finnish teleoperator
title_full_unstemmed	Challenges in moving to cloud computing environment : case Finnish teleoperator Challenges in moving to cloud computing environment : case Finnish teleoperator
title_short	Challenges in moving to cloud computing environment
title_sort	challenges in moving to cloud computing environment case finnish teleoperator
title_sub	case Finnish teleoperator
title_txtP	Challenges in moving to cloud computing environment : case Finnish teleoperator
topic	pilvi pilvilaskenta pilviympäristö pilvitietoturva GDPR Tietojärjestelmätiede Information Systems Science 601 pilvipalvelut tietoturva cloud services data security
topic_facet	601 GDPR Information Systems Science Tietojärjestelmätiede cloud services data security pilvi pilvilaskenta pilvipalvelut pilvitietoturva pilviympäristö tietoturva
url	https://jyx.jyu.fi/handle/123456789/68614 http://www.urn.fi/URN:NBN:fi:jyu-202004212826
work_keys_str_mv	AT buureotto challengesinmovingtocloudcomputingenvironmentcasefinnishteleoperator

Challenges in moving to cloud computing environment case Finnish teleoperator

Similar Items