What is Really Going On at Your Cloud Service Provider? Creating Trustworthy Certifications by Continuous Auditing

Lins, Sebastian; Thiebes, Scott; Schneider, Stephan; Sunyaev, Ali

doi:10.1109/hicss.2015.629

Cited by 20 publications

(3 citation statements)

References 44 publications

(122 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Furthermore, the use of automation in auditing is not without challenges. While automation can improve efficiency, there are limitations in automating industry-specific auditing processes due to high customization costs (Lins et al, 2015). Additionally, the adoption of automation in auditing may require auditors to embrace new competencies and workflows to effectively utilize these technologies ("Implementation of Robotic Process Automation: Audit Process, Workflow, and Competencies In Indonesian Banking Firms", n.d.).…”

Section: Results and Discussion A Automation And Workforce Supplement...mentioning

confidence: 99%

AI and Auditing: Enhancing Audit Efficiency and Effectiveness with Artificial Intelligence

Lidiana

2024

COUNT

View full text Add to dashboard Cite

The use of automation and artificial intelligence (AI) in audit practice is increasingly becoming a major focus, with significant impact on the profession. This research depicts the current landscape of the use of AI in auditing, highlighting aspects such as automation and empowerment of the workforce in auditing, impact of AI on improving audit quality criteria, key factors in adopting AI-based audit techniques, impact of AI technology on audit evidence , and auditors' perceptions of AI in improving audit quality. The results and discussion show that while there are great benefits from integrating automation and AI in auditing, including improved audit quality, enhanced efficiency, and the ability to perform continuous audits, there are also challenges that need to be overcome, such as high customization costs for specific audit processes industry. The use of AI in auditing requires adaptation from auditors to changes in competencies and workflows to effectively utilize this technology. However, with proper understanding and careful handling of these challenges, AI has great potential to improve overall audit practices.

show abstract

Section: Results and Discussion A Automation And Workforce Supplement...mentioning

confidence: 99%

AI and Auditing: Enhancing Audit Efficiency and Effectiveness with Artificial Intelligence

Lidiana

2024

COUNT

View full text Add to dashboard Cite

show abstract

“…However, most existing public auditing schemes could not resist a procrastinating auditor. Usually, the agreed frequency of data integrity check is weekly, monthly, or quarterly [16][17] which is not high, due to the cost issue and the burden on the CS side. An honest auditor would perform the check as scheduled, however, a procrastinating auditor may not conduct the auditing task timely until the last second.…”

Section: On the Vulnerability Of Procrastinating Auditorsmentioning

confidence: 99%

IPAPA: Incentive Public Auditing Scheme against Procrastinating Auditor

Miao¹,

Miao²,

Huang³

et al. 2022

Journal of Internet Technology

View full text Add to dashboard Cite

<p>Cloud storage provides convenience in managing data for users. Data integrity becomes important because data owner (DO) loses control of their data once it is uploaded to the cloud server (CS). Public auditing is used to check data integrity in cloud storage. Traditional public auditing schemes introduce a third-party auditor (TPA) to help users check their data. However, TPA is assumed to be trusted in these schemes, which may not be practical. A dishonest TPA may provide a good report to DO without executing the auditing task timely. If the data loss could not be detected timely, it may cause a great loss to DO. In this paper we aim to solve these problems using blockchain technique. In our scheme DO, TPA and CS interact with blockchain via smart contracts. We utilize a time-locked deposit smart contract to incentive TPA and CS for their fulfillment in the auditing task honestly. Otherwise, they would be amerced. We use storage smart contracts to ensure the auditing process transparency, and utilize zero-knowledge proof to protect DO’s privacy. The scheme is extended to support batch auditing to reduce the user’s cost. Experimental results show that our scheme is efficient and practical.</p> <p> </p>

show abstract

“…The topic has already been addressed in different contexts for some years from a general auditing perspective, but more in research than in practical implementations. For example in research articles 5 – 7 , but also in other certification schemes, such as the CSA STAR, which includes a continuous assessment aspect in level 3 assessments. In terms of already existing tools, many hyperscalers and technology providers offer security compliance monitoring tools, but they might not provide an auditor interface, since their preferred use case is as an internal monitoring tool.…”

Section: Introductionmentioning

confidence: 99%

Continuous Auditing and Continuous Certification of Cloud Services in MEDINA – Security Auditor’s View

Suhonen,

Martínez

2024

Open Res Europe

View full text Add to dashboard Cite

This paper discusses views on continuous auditing and continuous certification of cloud services in the context of the MEDINA EU project and the security auditing industry. Based on an introduction of MEDINA, the notions of continuous auditing and continuous certification are introduced from a security auditor’s perspective to discuss the opportunities and challenges related to these topics. The paper also discusses further actions beyond this project in order to provide feedback on how continuous auditing and certification can be developed and introduced to the market.

show abstract

What is Really Going On at Your Cloud Service Provider? Creating Trustworthy Certifications by Continuous Auditing

Cited by 20 publications

References 44 publications

AI and Auditing: Enhancing Audit Efficiency and Effectiveness with Artificial Intelligence

AI and Auditing: Enhancing Audit Efficiency and Effectiveness with Artificial Intelligence

IPAPA: Incentive Public Auditing Scheme against Procrastinating Auditor

Continuous Auditing and Continuous Certification of Cloud Services in MEDINA – Security Auditor’s View

Contact Info

Product

Resources

About