Perceived IT Security Risks of Cloud Computing: Conceptualization and Scale Development

Presenter Information

Tobias Ackermann, Chair of Information Systems, Technische Universität Darmstadt, Darmstadt, Germany.Follow
Thomas Widjaja, Chair of Information Systems, Technische Universität Darmstadt, Darmstadt, Germany.Follow
Alexander Benlian, Chair of Information Systems and E-Services, Technische Universität Darmstadt, Darmstadt, Germany.Follow
Peter Buxmann, Chair of Information Systems, Technische Universität Darmstadt, Darmstadt, Germany.Follow

Start Date

14-12-2012 12:00 AM

Description

Despite increasing interest in IT outsourcing (ITO) and the various benefits it promises, Cloud Computing (CC) as the currently most prevalent ITO paradigm still entails serious IT security risks. Little attention has been paid so far to fully and unambiguously capture the complex nature of IT security risks and how to measure it. Against this backdrop, we first propose a comprehensive conceptualization of Perceived IT Security Risks (PITSR) in the CC context that is based on six distinct risk dimensions grounded on an extensive literature review, Q-sorting, and expert interviews. Second, a multiple-indicators and multiple-causes analysis of data collected from 356 organizations is found to support the proposed conceptualization as a second-order aggregate construct. The results of our study contribute to IT security and ITO research, help (potential) adopters to assess risks, and enable CC providers to develop targeted strategies to mitigate risks perceived as crucial.

Recommended Citation

Ackermann, Tobias; Widjaja, Thomas; Benlian, Alexander; and Buxmann, Peter, "Perceived IT Security Risks of Cloud Computing: Conceptualization and Scale Development" (2012). ICIS 2012 Proceedings. 3.
https://aisel.aisnet.org/icis2012/proceedings/ISSecurity/3