A Secure Framework For Cloud-Based Computing Service Adoption In The Namibian Government Sector

ABSTRACT 

The term cloud computing is derived from the cloud diagram on the network that represented the Internet for years until a variety of services emerged that allowed computing resources to be accessed over the Internet. The technology extends existing IT capabilities without spending much on new information technology (IT) infrastructure, training new staff and software licence. Case studies from the United States, Europe, Africa and Asia governments’ spectacle cloud adoption services across the public sector. Cloud is increasingly trending and more and more organisations are making use of it. Despite the latest advances, some companies are still reluctant to migrate because of the paradigm security issues and challenges. IT infrastructure is difficult to maintain, outsourcing of expertise and tedious infrastructural procurement processes are problems experienced by Namibian government IT departments. Hence, the motive to assess and analyse cloud computing for future IT infrastructure and security issues and challenges for adopting cloud-based Infrastructure as a Service (IaaS) in the Namibian government institutions. This research presents a proposal on a secure framework for cloud-based adoption in the Namibian government sector, which is a case study of the Office of the Prime Minister (OPM) and Ministry of Urban and Rural Development (MURD) IT department. A qualitative case study research approach using the design science research paradigm was used to address the research objectives. Data was collected using interviews, online questionnaires, literature review and experts review. Design science research was used to come up with the framework. The study identified four main factors essential for cloud adoption: organisational factors, technological enablers, environmental factors and user characteristics. The study further elaborated on the components and the factors that mitigate security risks such as service configuration, security management, trust management, service monitoring, confidentiality, authentication, policies and an integrated cloud security architecture that can satisfy cloud security. Experts in the field of information technology and security reviewed the framework and their feedback informed the refinement of the artefact. The findings will contribute to Namibia’s Vision 2030 strategy and new technology horizon of Namibia’s future IT cloud infrastructure. The framework is a guideline on how the Namibian government can securely position itself to the cloud computing paradigm, increase and promote service delivery among the 14 regional offices around Namibia with a centralised resources management system, save costs, and promote effective and efficient work