Information Security in the Clouds

Abstract

Deploying data and applications to a cloud computing environment, whether private, community, or public, changes an organizations information technology (IT) security posture. Private cloud environments utilize new software layers, such as virtualization technologies, within the IT infrastructure. While community and public offerings may employ similar technologies, the security implications of community and public clouds are more complex. Use of these offerings changes the risk profile because some security responsibility is transferred to the cloud provider, and the organizations security perimeter is extended to include the providers computing resources and personnel. Given these changes, organizations need to understand the risks and appropriate mitigations.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2010
Accession Number
AD1108466

Entities

People

  • Donald Faatz
  • Lawrence Pizette

Organizations

  • MITRE Corporation

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Cloud Computing
  • Commerce
  • Communities
  • Computer Programming
  • Computer Programs
  • Computer Science
  • Computers
  • Consumers
  • Corporations
  • Cryptography
  • Cybersecurity
  • Detection
  • Disasters
  • Electronic Mail
  • Engineering
  • Environment
  • Executives
  • Geographic Regions
  • Governments
  • Homogeneity
  • Information Processing
  • Information Security
  • Information Systems
  • Infrastructure
  • Operating Systems
  • Security
  • Systems Engineering
  • Virtual Machines
  • Word Processors

Fields of Study

  • Computer science

Readers

  • Cybersecurity.