Chapter 4: Security threats associated with Cloud computing

The previous chapter illustrated some of the potential benefits and pitfalls associated with the security of Cloud computing.

This chapter highlights some of the threat actors that may be in a position to attack a Cloud-based service. Some of the threat actors discussed in this chapter are taken from the NIST list of important actors for public Clouds available from:

www.nist.gov/itl/cloud/actors.cfm.

Alternative threat actor lists are available from the likes of CESG/NCSC via the now withdrawn HMG Information Assurance Standard 1 (NCSC currently points towards NIST SP800-30³⁹ as an example threat taxonomy), and as part of the Information Security Forum (ISF) IRAM v2 risk assessment ...

Get Securing Cloud Services - A pragmatic approach, second edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Securing Cloud Services - A pragmatic approach, second edition by Lee Newcombe

CHAPTER 4: SECURITY THREATS ASSOCIATED WITH CLOUD COMPUTING

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly