Independent security group the Jericho Forum today released a new document aimed at helping organisations understand the security risks associated with moving to a cloud computing model.
The paper outlines a Cloud Cube Model that defines various types of cloud computing environment, and the associated security issues.
The model summarises four dimensions of the cloud computing model: external and internal; proprietary and open; perimeterised and deperimeterised; and insourced and outsourced.
Companies are advised to first classify their data according to sensitivity and regulatory or compliance restrictions, before deciding which data and processes to move to the cloud and which cloud models to adopt.
Security and identity/access management are currently immature in the cloud computing environment, especially when it comes to collaboration between enterprises, according to Adrian Seccombe, chief information security officer at pharmaceuticals firm Eli Lilly and Jericho Forum board member.
However, the Forum believes that cloud computing could become more secure than traditional environments if the right controls are put in place.
"If you design the cloud computing architecture effectively you can deliver security and privacy to your customers, although it will be an evolutionary journey," said Seccombe.
Yeah, sorry about all that, simpers Zuckerberg
Vivaldi promotes DuckDuckGo search engine over Google over privacy concerns
Scientists say that strontium titanate could transform electronics
The wheels of justice grind surprisingly slowly