Outlook: Cloudy with a chance of security challenges and improvements

Trent Jaeger; Joshua Schiffman

doi:10.1109/MSP.2010.45

Outlook: Cloudy with a chance of security challenges and improvements

Trent Jaeger, Joshua Schiffman

Research output: Contribution to journal › Article › peer-review

60 Scopus citations

Abstract

Cloud computing presents an opportunity to offload computing to third party resources, but this business model isn't without security risks. Customers must determine if running their computing on a base system managed by a third party is better than running on their own systems. They must be convinced that running in the same data center as their competitors or adversaries is safe, and they are still responsible for complex security configuration. Despite these concerns, cloud vendors can also leverage the cloud architecture to improve security by building verifiable base systems, designing integrity-protected cloud services, and limiting security configuration complexity. Thus, while the cloud architecture provides security challenges, there are also opportunities to ease the security configuration burden on customers.

Original language	English (US)
Article number	5403158
Pages (from-to)	77-80
Number of pages	4
Journal	IEEE Security and Privacy
Volume	8
Issue number	1
DOIs	https://doi.org/10.1109/MSP.2010.45
State	Published - Jan 2010

All Science Journal Classification (ASJC) codes

Computer Networks and Communications
Electrical and Electronic Engineering
Law

Access to Document

10.1109/MSP.2010.45

Cite this

@article{733351cc9f1b46819dfc05d390f07e7e,

title = "Outlook: Cloudy with a chance of security challenges and improvements",

abstract = "Cloud computing presents an opportunity to offload computing to third party resources, but this business model isn't without security risks. Customers must determine if running their computing on a base system managed by a third party is better than running on their own systems. They must be convinced that running in the same data center as their competitors or adversaries is safe, and they are still responsible for complex security configuration. Despite these concerns, cloud vendors can also leverage the cloud architecture to improve security by building verifiable base systems, designing integrity-protected cloud services, and limiting security configuration complexity. Thus, while the cloud architecture provides security challenges, there are also opportunities to ease the security configuration burden on customers.",

author = "Trent Jaeger and Joshua Schiffman",

year = "2010",

month = jan,

doi = "10.1109/MSP.2010.45",

language = "English (US)",

volume = "8",

pages = "77--80",

journal = "IEEE Security and Privacy",

issn = "1540-7993",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

number = "1",

}

TY - JOUR

T1 - Outlook

T2 - Cloudy with a chance of security challenges and improvements

AU - Jaeger, Trent

AU - Schiffman, Joshua

PY - 2010/1

Y1 - 2010/1

N2 - Cloud computing presents an opportunity to offload computing to third party resources, but this business model isn't without security risks. Customers must determine if running their computing on a base system managed by a third party is better than running on their own systems. They must be convinced that running in the same data center as their competitors or adversaries is safe, and they are still responsible for complex security configuration. Despite these concerns, cloud vendors can also leverage the cloud architecture to improve security by building verifiable base systems, designing integrity-protected cloud services, and limiting security configuration complexity. Thus, while the cloud architecture provides security challenges, there are also opportunities to ease the security configuration burden on customers.

AB - Cloud computing presents an opportunity to offload computing to third party resources, but this business model isn't without security risks. Customers must determine if running their computing on a base system managed by a third party is better than running on their own systems. They must be convinced that running in the same data center as their competitors or adversaries is safe, and they are still responsible for complex security configuration. Despite these concerns, cloud vendors can also leverage the cloud architecture to improve security by building verifiable base systems, designing integrity-protected cloud services, and limiting security configuration complexity. Thus, while the cloud architecture provides security challenges, there are also opportunities to ease the security configuration burden on customers.

UR - http://www.scopus.com/inward/record.url?scp=77249130262&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=77249130262&partnerID=8YFLogxK

U2 - 10.1109/MSP.2010.45

DO - 10.1109/MSP.2010.45

M3 - Article

AN - SCOPUS:77249130262

SN - 1540-7993

VL - 8

SP - 77

EP - 80

JO - IEEE Security and Privacy

JF - IEEE Security and Privacy

IS - 1

M1 - 5403158

ER -

Outlook: Cloudy with a chance of security challenges and improvements

Abstract

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this