Independent security group the Jericho Forum today released a new document aimed at helping organisations understand the security risks associated with moving to a cloud computing model.
The paper outlines a Cloud Cube Model that defines various types of cloud computing environment, and the associated security issues.
The model summarises four dimensions of the cloud computing model: external and internal; proprietary and open; perimeterised and deperimeterised; and insourced and outsourced.
Companies are advised to first classify their data according to sensitivity and regulatory or compliance restrictions, before deciding which data and processes to move to the cloud and which cloud models to adopt.
Security and identity/access management are currently immature in the cloud computing environment, especially when it comes to collaboration between enterprises, according to Adrian Seccombe, chief information security officer at pharmaceuticals firm Eli Lilly and Jericho Forum board member.
However, the Forum believes that cloud computing could become more secure than traditional environments if the right controls are put in place.
"If you design the cloud computing architecture effectively you can deliver security and privacy to your customers, although it will be an evolutionary journey," said Seccombe.
Geoengineering on the sea floor near glaciers would form a new ice shelf to prevent melting
Alterations in capillary blood flow can be caused by body position change
Curiosity rover is in 'normal mode' but not transmitting scientific data back to base
NatWest outage comes a day after Barclays' IT systems shut out customers and staff