06-12-2012, 01:46 PM
Cloud Computing Security Issues
1Cloud Computing.ppt (Size: 2.34 MB / Downloads: 189)
Something Old, Something New
New: Cloud describes the use of a collection of services, applications, information, and infrastructure comprised of pools of compute, network, information and storage resources. These components can be rapidly orchestrated, provisioned, implemented and decommissioned, and scaled up or down providing for an on-demand utility-like model of allocations and consumption
Cloud Computing Parts
NIST defines cloud computing by:
5 essential characteristics
3 cloud service models
4 cloud deployment models
Essential Characteristics
On-demand service
Get computing capabilities as needed automatically
Broad Network Access
Services available over the net using desktop, laptop, PDA, mobile phone
Cloud Service Models
Software as a Service (SaaS)
We use the provider apps
User doesn’t manage or control the network, servers, OS, storage or applications
Platform as a Service (PaaS)
User deploys their apps on the cloud
Controls their apps
User doesn’t manage servers, IS, storage
Deployment Models
Public
Cloud infrastructure is available to the general public, owned by org selling cloud services
Private
Cloud infrastructure for single org only, may be managed by the org or a 3rd party, on or off premise
Evaluate the Asset
How would we be harmed if
the asset became widely public & widely distributed?
An employee of our cloud provider accessed the asset?
The process of function were manipulated by an outsider?
The process or function failed to provide expected results?
The info/data was unexpectedly changed?
The asset were unavailable for a period of time?