Advertisement

Small and Medium-Sized Enterprises’ Understanding of Security Evaluation of Cloud-Based Business Intelligence Systems and Its Challenges

  • Moses MoyoEmail author
  • Marianne Loock
Conference paper
Part of the Communications in Computer and Information Science book series (CCIS, volume 973)

Abstract

Although small and medium-sized enterprises (SMEs) are encouraged to seek new business opportunities by adopting and utilising cloud-based services, their understanding of threats, vulnerabilities and risk evaluation in the cloud environment, which is crucial in the success of cloud-based business intelligence (BI) adoption, is hardly known. The purpose of this study was to investigate SMEs’ understanding of security evaluation of cloud-based BI and associated challenges. A cross-sectional survey was conducted among 109 SME owners/managers from selected South African provinces in which data was collected by means of an electronic and postal questionnaire. The study found that SME owners/managers were aware of conventional security challenges in the cloud-based services including BIs, had a basic understanding of security evaluation in general, understood the need to evaluate cloud-based BIs in terms of physically checking for vulnerabilities and data security and were not proficient in performing security evaluations of cloud-based BIs and relied on experts. SMEs face predicaments in evaluating cloud-based BI due to a lack of appropriate tools they can use. The study concluded that SME owners/managers have a basic understanding of security evaluation and challenges it poses.

Keywords

Cloud-based business intelligence Security evaluation Small and medium-sized enterprises 

References

  1. 1.
    Muntean, M.: Considerations regarding business intelligence in cloud context. Informatica Economica 19(4), 55–67 (2015)Google Scholar
  2. 2.
    Tamer, C., Kiley, N., Ashrafi, N., Kuilboer, J.: Risks and benefits of business intelligence in the cloud. In: Proceedings of the Northeast Decision Sciences Institute Annual Meeting, p. 86 (2013)Google Scholar
  3. 3.
    Forest Technologies: SME Survey 2015: The Greening of the SME Sector (2015). http://www.smesurvey.co.za/press.html
  4. 4.
    Antoo, M., Cadersaib, Z., Gobin, B.: PEST framework for analysing cloud computing adoption by Mauritian SMEs. Lect. Notes Softw. Eng. 3(2), 107–112 (2015)Google Scholar
  5. 5.
    Moyo, M., Loock, M.: South African small and medium-sized enterprises’ reluctance to adopt and use cloud-based business intelligence systems: a literature review. In: The 11th International Conference for Internet Technology and Secured Transactions (ICITST-2016), pp. 250–254 (2016)Google Scholar
  6. 6.
    Toesland, F.: Why SMEs are big targets for cybercrime (2016). https://www.raconteur.net/technology/why-smes-are-big-targets-for-cyber-crime
  7. 7.
    Madzima, K., Moyo, M., Dzawo, G., Mbodila, M.: Mobile security threats: a survey of how mobile device users are protecting themselves from new forms of cybercrimes. In: Proceedings of the 10th International Conference on Cyber Warfare and Security, ICCWS 2015, pp. 123–133 (2015)Google Scholar
  8. 8.
    Akinola, K.E., Odumosu, A.A.: Threat handling and security issue in cloud computing. Int. J. Sci. Eng. Res. 6(11), 1371–1385 (2015)Google Scholar
  9. 9.
  10. 10.
    Mohlameane, M.J., Ruxwana, N.L.: The potential of cloud computing as an alternative technology for SMEs in South Africa. J. Econ. Bus. Manage. 1(4), 396–400 (2014)Google Scholar
  11. 11.
    Boonsiritomachai, W., McGrath, M., Burgess, S.: A research framework for the adoption of business intelligence by small and medium-sized enterprises. In: 27th Annual SEAANZ Proceedings for Small Enterprise Association of Australia and New Zealand Conference, 16–18 July 2014, pp. 16–28 (2014)Google Scholar
  12. 12.
    Chang, V., Kuob, Y., Ramachandrana, M.: Cloud computing adoption framework: a security framework for business clouds. Future Gener. 57(2015), 24–41 (2015)Google Scholar
  13. 13.
    Narayanan, S.: Tackling the cyber security challenges faced by SMEs (2013). http://www.cisoplatform.com/profiles/blogs/tackling-the-cyber-security-challenges-by-smes
  14. 14.
    European Union Agency for Network and Information Security. Security framework for governmental clouds (2015). http://www.enisa.europa.eu/activities/Resilience-and-CIIP/cloud-computing/governmental-cloud-security/security-framework-for-govenmental-clouds
  15. 15.
    Chou, T.: Security threats on cloud computing vulnerabilities. Int. J. Comput. Sci. Inf. Technol. (IJCSIT) 5(3), 79–88 (2013)Google Scholar
  16. 16.
    Fernandes, D.A.B., Soares, L.F.B., Gomes, J.V.M., Freire, M., Inacio, P.R.M.: Security issues in cloud environments: a survey. Int. J. Inf. Secur. (IJIS) 2013(1), 1–62 (2013)Google Scholar
  17. 17.
    Subashini, S., Kavitha, V.: A survey on security issues in service delivery models of cloud computing. J. Netw. Comput. Appl. 34(1), 1–11 (2011)Google Scholar
  18. 18.
    Oza, N., Karppinen, K., Savola, R.: User experience and security in the cloud – an empirical study in the Finnish Cloud Consortium. In: The 2nd IEEE International Conference on Cloud Computing Technology and Science, pp. 621–628 (2010)Google Scholar
  19. 19.
    Lacey, D., James, B.E.: Review of Availability of Advice on Security for Small/Medium Sized Organisations (2010). https://ico.org.uk/media/about-the-ico/documents/1042344/review-availablility-of-security-advice-for-sme.pdf
  20. 20.
    Mussa, M., Kipanyula, M.J., Angello, C., Sanga, C.A.: Evaluation of Livestock Information Network Knowledge System (LINKS) based on user satisfaction definition of information system evaluation. Int. J. Inf. Commun. Technol. Res. 6(8), 115–130 (2016)Google Scholar
  21. 21.
  22. 22.
    Al-yaseen, H.M.: Challenges of implementing healthcare information systems in developing countries: using a mixed method research. J. Emerg. Trends Comput. Inf. Sci. 3(11), 1521–1529 (2012)Google Scholar
  23. 23.
    Al-Yaseen, H., Al-Jaghoub, S., Al-Shorbaji, M., Salim, M.: Post-implementation evaluation of healthcare information systems in developing countries. Inf. Syst. J. 13(1), 9–16 (2010)Google Scholar
  24. 24.
  25. 25.
    Kazim, M., Zhu, S.Y.: A survey on top security threats in cloud computing. Int. J. Appl. Comput. Sci. Appl. 6(3), 10495–10500 (2015)Google Scholar
  26. 26.
    Cloud Security White Paper.: How to Evaluate the Data Security Capabilities of Cloud-Based Services (2011). http://www.carestream.com/WhitePaper_Cloud-Security.pdf
  27. 27.
    Heiser, J.: How to Evaluate Cloud Service Provider Security (2016). https://www.gartner.com/doc/3275117/evaluate-cloud-service-provider-security
  28. 28.
    Agostino, A., Soilen, S.K., Gerritsen, B.: Cloud solution in business intelligence for SMEs – vendor and customer perspectives. J. Intell. Stud. Bus. 3(2013), 5–28 (2013)Google Scholar
  29. 29.
    Vacca, J.R.: Security in the Private Cloud. Taylor and Francis, Denver (2017)Google Scholar
  30. 30.
    Willcocks, L.: Evaluating information technology investments: research findings and reappraisal. J. Inf. Syst. 2(1992), 243–268 (1992)Google Scholar
  31. 31.
  32. 32.
    Moghe, P.: 6 Hidden Challenges of using the Cloud for Big Data and How to Overcome Them (2016). https://thenextweb.com/insider/2016/04/12/6-challenges-cloud-overcome
  33. 33.
    Segars, A.H., Grover, V.: Strategic information systems planning success: an investigation of the construct and its measurement. MIS Q. 22(2), 139–163 (1998)Google Scholar
  34. 34.
    Chang, S.J., Van Witteloostuijn, A., Eden, L.: From the editors: common method variance in international business research. Int. J. Bus. Stud. 41(2), 178–184 (2010)Google Scholar

Copyright information

© Springer Nature Switzerland AG 2019

Authors and Affiliations

  1. 1.University of South Africa (UNISA)PretoriaSouth Africa

Personalised recommendations