7 - Cloud Computing Security Challenges Flashcards
Elastic Resources
Scale up/down to meet demand
Measured service
Pay per use
Resource Pooling
Resourcees pooled to multiple consumers using a multi-tenant model.
Different physical and virtual resources dynamically assigned/reassigned
On-demand self service
Customer can provision their own computing capabilities
High Availability/Broad network access
Available over the network and accessed through standard mechanisms that promoto use by heterogeneous platforms
Private cloud
Single organisation (comprising multiple consumers)
Owned/managed/operated by the organisation, a 3rd party or mix. On or off prem
Community Clooud
For use by a community of consumers from orgs that have shared interest.
Public Cloud
Open use by general public
Hybrid Cloud
Composition of two/more other cloud types that are unique entities but bound by standardised/proprietary tech that enables data/app portability
IaaS
Infrastructure as a service
Provision fundamental computing resources
PaaS
Deploy customer apps using languages, libraries etc supported by the provider
SaaS
Software as a service
Use provider’s own apps on a cloud service
Advantages of Cloud
LIHCD
- Lower costs (software/computing)
- Improved performance and availability
- High storage capacity
- Continuous updates
- Data sharing and group work(?)
Key Cloud Issues
- Client has no control of infrastructure (black box)
- Who are we sharing with?
- Requires internet conneciton
- Limited flexibility
- Different protocols/APIs
- Data security/privacy (lose control, multi-tenancy, data leakage)
- Does the provider comply with the same regulations/policy?
Cloud Security Solutions
- Isolation/protection of VMs
- APIs for reporting/auditing/alerts
- Docker-based services
- Data encryptions
- Security policies
- Mapping of security controls for internally hosted apps to the cloud infra
- Audit and compliance
- Multi factor auth for example,
