DOMAIN 1 - CLOUD SECURITY SCOPE, RESPONSIBILTIES, AND MODELS Flashcards
CLOUD PROVIDER IS RESPONSIBLE FOR NEARLY ALL SECURITY
SaaS
CLOUD PROVIDER RESPONSIBLE FOR THE SECURITY OF THE PLATFORM, CONSUMER RESPONSIBLE FOR EVERYTHING THEY IMPLEMENT ON PLATFORM, INCLUDING HOW THEY CONFIGURE ANY OFFERED SECURITY FEATURES. RESPONSIBILITIES ARE EVENLY MORE SPLIT.
PaaS
PROVIDER RESPONSIBLE FOR FOUNDATIONAL SECURITY, CLOUD USER RESPONSIBLE FOR EVERYTHING THEY BUILD ON INFRASTRUCTURE. PLACES MORE RESPONSIBILTY ON CLIENT.
IaaS
INCLUDE VISUALIZATIONS AND DESCRIPTIONS USED TO EXPLAIN CLOUDS SECURITY CONCEPTS AND PRINCIPLES
CONCEPTUAL MODELS OR FRAMEWORKS
CATEGORIZE AND DETAIL SPECIFIC CLOUD SECURITY CONTROLS OR CATEGORIES OF CONTROLS
CONTROL MODELS OR FRAMEWORKS
TEMPLATES FOR IMPLEMENTING CLOUD SECURITY, TYPICALLY GENERALIZED. THEY CAN BE VERY ABSTRACT, BORDERING ON CONCEPTUAL, OR QUITE DETAILED, DOWN TO SPECIFIC CONTROLS AND FUNCTIONS
REFERENCE ARCHITECTURES
REUSABLE SOLUTIONS TO PARTICULAR PROBLEMS. AS WITH REFRENCE ARCHITECTURES, THEY CAN BE MORE OR LESS ABSTRACT OR SPECIFIC, EVEN DOWN TO COMMON IMPLEMENTATION PATTERNS ON PARTICULAR CLOUD PLATFORMS
DESIGN PATTERNS