This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Cloud Top 5 Risks with IAAS

From OWASP
Revision as of 00:14, 23 October 2009 by Ken Huang (talk | contribs) (moved Top 5 Risks with IAAS to Cloud Top 5 Risks with IAAS: Cloud)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

IAAS serves as the foundation layer for the cloud computing. The Top security concerns are:

<span class="Apple-style-span" style="line-height: normal; -webkit-border-horizontal-spacing: 1px; -webkit-border-vertical-spacing: 1px;" />

1) If the business mission critical application is hosted in IAAS environment, the down time due to man mad or nature disaster could introduce significant business risks. There are examples of some companies went bankrupt due to FBI investigation of data breach in IAAS enviroement.


2) Physical security of the IAAS environment. 


3) The Service Level Agreement


4) Compatibility of IAAS and internal legacy infrastructure.


5) Regulatory compliance