This report investigates the criminal, regulatory and legal threats to small business users of cloud computing. It identifies the potential benefits and risks of cloud computing. It outlines a way forward for small businesses to reduce the risks. Technical and commercial practices to reduce risks include the provision of policies and computer security training; provision of training to small businesses by industry bodies; and obtain specialised cyber and cloud insurance.
Prepared by the Australian Research Council (ARC) Centre of Excellence in Policing and Security (CEPS) and the Australian Institute of Criminology (AIC) for the Department of Broadband, Communications and the Digital Economy (DBCDE).
Report provided by the Department of Broadband, Communications and the Digital Economy (DBCDE).
Contents
- Executive summary
- Introduction
- Research aims
- Methodology
- Small business & cloud computing in context
- Small business, cloud computing & cyber crime
- Small business, cloud computing & regulatory compliance - the potential for small business to commit offences
- Small business & cloud service providers - contractual terms & conditions
- Small business, their customers & business insurance - the potential for insurance to cover civil liabilities
- Small business & third party technical consulting services
- Future of small business & cloud service provider contracts - still no light at the end of the tunnel for small business
- Conclusion
- Endnotes