What is the Shared Security Responsibility Model?
Cloud providers go to great lengths to ensure they provide a secure platform for customers to develop and host their applications. They have a wealth of security technology and expertise at their disposal. They also regularly review their security measures to protect against flaws in their systems. But they can only do so much to protect their customers’ cloud assets.
This is because no two cloud customers are the same.
A shared security responsibility model is a framework cloud vendors use to help customers understand their obligations when using their services. It ensures both user accountability and that both parties work together to ensure full security coverage.
This paper compares the shared security models of leading cloud providers and provides advice on the additional security measures enterprises should take to secure their cloud workloads. Notwithstanding the fact that most shared responsibility models work on the same fundamental principles, the leading vendors nevertheless use different approaches to document each party’s responsibilities.
To use security tools effectively, customers also need to understand their shared responsibilities in the cloud—as this knowledge could make the all-important difference between a secure computing environment and the potentially devastating consequences of a malicious attack.