cloud provider

Who is responsible for risk mitigation in the Cloud?

October 6th, 2010

RISK THREAT MITIGATING PARTY Insecure, Porous APIs Man in the middle, content threats, code injection, DoS attacks § Enterprise and Cloud Provider Logical Multi-Tenancy Virtual machine attacks, malicious code execution, comingled tenant data § Cloud Provider Data Protection and Confidentiality Reduced confidentiality and privacy for private data stored in the clear at the cloud provider