Cloud computing security is an evolving sub-domain of
computer security, network security, and, more broadly, information security.
It refers to a broad set of policies, technologies, and controls deployed to
protect data, applications, and the associated infrastructure of cloud
computing.
Cloud computing has evolved through a number of phases which
include grid and utility computing, application service provision (ASP), and
Software as a Service (SaaS).
There is number of security issues/concerns associated with
cloud computing but these issues fall into two broad categories:
a)
Security issues faced by cloud providers
(organizations providing software-, platform-, or infrastructure-as-a-service
via the cloud) and
b)
Security issues faced by their customers.
In most cases, the
provider must ensure that their infrastructure is secure and that their
clients’ data and applications are protected while the customer must ensure
that the provider has taken the proper security measures to protect their
information.
The extensive use of virtualization in implementing cloud
infrastructure brings unique security concerns for customers or tenants of a
public cloud service
Virtualization alters the relationship between the OS and
underlying hardware - be it computing, storage or even networking.
