Emergent (In)Security of Multi-Cloud Environments.
CoRR(2023)
摘要
As organizations increasingly use cloud services to host their IT
infrastructure, there is a need to share data among these cloud hosted services
and systems. A majority of IT organizations have workloads spread across
different cloud service providers, growing their multi-cloud environments. When
an organization grows their multi-cloud environment, the threat vectors and
vulnerabilities for their cloud systems and services grow as well. The increase
in the number of attack vectors creates a challenge of how to prioritize
mitigations and countermeasures to best defend a multi-cloud environment
against attacks. Utilizing multiple industry standard risk analysis tools, we
conducted an analysis of multi-cloud threat vectors enabling calculation and
prioritization for the identified mitigations and countermeasures. The
prioritizations from the analysis showed that authentication and architecture
are the highest risk areas of threat vectors. Armed with this data, IT managers
are able to more appropriately budget cybersecurity expenditure to implement
the most impactful mitigations and countermeasures.
更多查看译文
关键词
insecurity,environments,multi-cloud
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络
Chat Paper
正在生成论文摘要