Security in Cloud Computing

Security in Cloud Computing

Alpana M. Desai (University of Alaska Anchorage, USA) and Kenrick Mock (University of Alaska Anchorage, USA)
Copyright: © 2015 |Pages: 14
DOI: 10.4018/978-1-4666-6539-2.ch067
OnDemand PDF Download:
No Current Special Offers


Cloud computing has recently emerged in prominence and is being rapidly adopted by organizations because of its potential and perceived benefits of flexibility and affordability. According to surveys conducted in 2008 and 2009 by International Data Corporation (IDC) of IT executives and CIOs, security was cited as the top concern for the adoption of cloud computing. Enterprises that plan to utilize cloud services for their infrastructure, platform, and/or software needs must understand the security risks and privacy issues related to cloud computing. This chapter discusses the technical, legal, and policy/organizational security risks of cloud computing, and reviews recommendations/strategies for managing and mitigating security threats in cloud computing. It also presents vendor-specific solutions and strategies that cloud service providers are implementing for mitigating security risks in cloud computing.
Chapter Preview

Definition Of Cloud Computing

Cloud computing has been defined differently by various groups (comprising of industry, academia, and government). Armbrust, et al. (2009) state that “cloud computing is a new term for a long-held dream of computing as a utility” due to its pay-as-you-go characteristic. They refer to cloud computing as “both the applications delivered as services over the Internet and the hardware and systems software in the datacenters that provide those services.”

IDC (2008a) makes a distinction between cloud services and cloud computing by first defining cloud services with eight specific attributes (off-site/third party provider; accessed via the internet; minimal/mo IT skills required to implement; provisioning; pricing model; user interface; system interface; and shared resources/common versions) and then defining cloud computing as consisting of “a growing list of technologies and IT offerings that enable cloud services as defined by its eight characteristics.”

In this article, we use NIST’s (National Institute of Standards and Technology) definition of cloud computing. NIST defines cloud computing as a model for enabling convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction, (Mell & Grance, 2009)

This cloud model promotes availability and it is composed of five essential characteristics, three service models, and four deployment models.

Complete Chapter List

Search this Book: