Cloud
The cloud, or cloud storage, is a network of shared servers worldwide. From the user's point of view, it is a virtual storage that can be accessed from any device that is connected to the internet.
•What are the security risks of the cloud?
What is cloud computing?
The provision of computer technologies and services (cloud storage, applications, computing power) without direct and active management by the user is referred to collectively by the term cloud computing.
Therefore, physical storage servers are owned and managed by so-called hosting companies—cloud providers who are responsible for making data available and accessible and also ensuring the security of cloud servers and their data.
The most common cloud hosting form is the virtual private server (VPS). Although virtual servers share their resources, their software is isolated, and operations on one VPS do not affect another VPS.
Cloud services
Cloud computing services are most often provided in three modes:
•Infrastructure as a Service (IaaS)—a cloud provider provides the customer with computing resources (storage, network, servers and virtualization). The customer can deploy and run any software (including operating systems) but does not manage the underlying cloud infrastructure.
•Platform as a Service (PaaS)—the supplier provides a computing platform and one or more applications. The customer does not have to create and maintain the infrastructure.
•Software as a Service (SaaS)—the supplier allows the customer to use applications running on cloud infrastructure. The customer does not manage the infrastructure or functionality of individual applications (except limited app user settings).
Cloud solution models
According to the method of deployment, cloud solutions can be divided into:
•Public cloud (public cloud)—is a solution intended for the general public for free or on a subscription basis. Access to the cloud solution is possible via the internet or local computer networks.
•Private cloud (private cloud)—a cloud infrastructure intended exclusively for one organization, whether it is managed internally or by a third party and hosted internally or externally. Access is possible via the internet and in the local network.
•Hybrid cloud (hybrid cloud)—a combination of public and private cloud services, often from different providers. This allows the organization to expand the capacity and/or capabilities of the cloud service by merging or adapting it to another cloud service and storing data according to different classifications on both private and public clouds.
What are the security risks of the cloud?
Security risks associated with cloud services are an important topic these days. The main security risks of a cloud environment include:
•Moving data to the cloud comes with the risk of losing control over that data. Users must trust the cloud service provider to protect their data properly.
•Careless handling of credentials can lead to their misuse by attackers. This can lead to leakage of sensitive data or unauthorized access to cloud accounts.
•Cloud services can be the target of DDoS attacks, which aim to take the service out of service by overwhelming network traffic and server resources.
•Inadequate data encryption can lead to data leakage in a cloud storage security breach.
•Reliable data backup is essential to protect against data loss or damage. Insufficient backups can cause irreversible data loss in a crash or attack.
•User permissions that are too broad can lead to unauthorized access to sensitive data and an increased risk of misuse.
•Security incidents can occur on the cloud service provider's side due to infrastructure vulnerabilities or configuration errors.