Abstract
Security in cloud is to be increased to strengthen the confidence and trust of cloud service consumers. In the upcoming years, the scientific research and education teams will have to investigate finding new ways to handle the issue of cloud security. This chapter discusses the major threats and their impact on clouds, security measures to handle the attacks in clouds, security as a service in research and education, and steps to enhance security feature in clouds.
Top2. Major Factors That Impact Cloud Security
Some of the major factors that have an impact on Cloud security are listed below:
- •
Attackers and Threats: Beware, cybercrime is on the rise. Hackers not only create threats but also are targeting attacks on software and platform technologies for their personal gains.
- •
IT Consumerized: Since the IT sector is consumerized, employees tend to use their personally owned devices such as mobiles and laptops to access applications, data and cloud services. This might make a dent on the security system.
- •
Architectural Technologies: With virtualization growth and use of public cloud perimeter and their controls within the data center are no longer easily constrained or physically isolated nor protected.
- •
Dynamic and Challenging Regulatory Environment: Since organization face a lot of burden of legal and regulatory compliance which are prescriptive demands and face very high penalties for non-compliances and breaches.
Key Terms in this Chapter
Platform-as-a-Service (PaaS): Provides a development and deployment platform for running applications on the Cloud.
Public Cloud: A Cloud computing model which is a 3rd party and multi-tenant architecture. It is hosted by a cloud service provider who rents his capacity on pay-per-use payment model.
Private Cloud: A Cloud computing model runs within an organization’s Data Center/ infrastructure for internal use.
Infrastructure-as-a-Service (IaaS): It abstracts hardware (server, storage, and network) infrastructure into a pool of computing, storage and connectivity capabilities which are delivered as services.
Software-as-a-Service (SaaS): A software delivery model where an application is shared across multiple users through web browsers.
Cloud Computing: Technique to offer elastic access to dynamically provision IT resources on a pay-on-use basis to service users.
Virtualization: A cloud technology provides an abstract environment - virtual hardware, operating system, application-to run applications.
Hybrid Cloud: A Cloud computing model which extends the private cloud model by using both local and remote resources. It is usually used to handle cloud burst when the local capacity is exhausted.