Cloud Security # 3

This the third instalment looks at Separation between Users. You need to address the factors that affect user separation;

Firstly what type of cloud model is in use e.g. IaaS, PaaS, SaaS because you need to understand where the separation controls are implemented and this is heavily influenced by the service model.

For example in an IaaS service you should consider separation provided by compute, storage and networking components.

Who you are sharing the service with - this is dictated by the deployment model (e.g. public, private or community cloud)

The level of assurance available in the implementation of separation controls

You must have confidence that you understand all user types sharing the platform, the service provides the correct separation of your data and service from other users and that management of your service is kept separate from other users

Need some advice or help with assessing that you have accomplished the above, then get in touch. More than happy to have a chat regarding your current cloud security

Tomorrow – Governance Framework