Hello here we have some problems and questions associated with the cloud in term of security
Most security problems stem from:
Loss of control
Lack of trust (mechanisms)
Multi-tenancy
Loss of Control in the Cloud
Consumer’s loss of control
–Data, applications, resources are located with provider
–User identity management is handled by the cloud
–User access control rules, security policies and enforcement are managed by the cloud provider
–Consumer relies on provider to ensure
•Data security and privacy
•Resource availability
•Monitoring and repairing of services/resources
Lack of Trust in the Cloud
A brief deviation from the talk
–Trusting a third party requires taking risks
Defining trust and risk
–Opposite sides of the same coin
–People only trust when it pays (Economist’s view)
–Need for trust arises only in risky situations
Defunct third party management schemes
–Hard to balance trust and risk
–Is the cloud headed toward the same path?
Multi-tenancy Issues in the Cloud
Conflict between tenants’ opposing goals
–Tenants share a pool of resources and have opposing goals
How does multi-tenancy deal with conflict of interest?
–Can tenants get along together and ‘play nicely’ ?
–If they can’t, can we isolate them?
How to provide separation between tenants?
As Cloud Computing is becoming a necessity in IT systems in the world, we need to pay attention to every details which may compromise our security
Thanks
