Cloud Zone
Cloud Zone is brought to you in partnership with:

Mark O'Neill is CTO of Vordel, an Axway company. He is the author of the McGraw-Hill book "Web Services Security" and is frequent speaker at conferences including Java One, the RSA Security Conference, and Oracle Open World. Mark is based on Boston, Massachusetts. Mark is a DZone MVB and is not an employee of DZone and has posted 45 posts at DZone. You can read more from them at their website. View Full User Profile

Covering your *aaS - A security checklist for cloud models

03.18.2011
| 4981 views |
  • submit to reddit

We Recommend These Resources

NOSQL for the Enterprise

If you ask three organizations how they are using the Cloud, you will get (at least) three answers. One may be considering using Google Apps for email, to avoid asking an admin to reboot mail servers at 4am to clear an email backlog. Another may be considering using Terramark or Amazon EC2 to spin up compute power to run processor-intensive work (like DNA sequencing, let's say). Another may be considering using Amazon's S3 as external storage. Here is where the *aaS model comes to the rescue. Cloud usage fits relatively neatly into the different categorizations of SaaS, PaaS, and IaaS.

Using this categorization, I recently wrote a cloud security introduction for CSO Magazine which uses these categories: SaaS, PaaS, and IaaS, to show how security applies differently in each case. Check it out...
References
Reference: 
Covering your *aaS - A security checklist for cloud models
Published at DZone with permission of Mark O'neill, author and DZone MVB. (source)

(Note: Opinions expressed in this article and its replies are the opinions of their respective authors and not those of DZone, Inc.)

"Starting from scratch" is seductive but disease ridden
-Pithy Advice for Programmers