A Review of Cloud Computing Security: Virtualization, Side-Channel Attacks, and Management
Source: University of Calgary
In recent years cloud computing has become a growing interest for organizations looking to reduce their IT costs by offloading infrastructure and software costs onto 3rd party organizations who offer Software-as-a-Service (SaaS) (e.g. Google Apps), Platform-as-a-Service (PaaS) (e.g. Google App Engine), and Infrastructure-as-a-Service (IaaS) (e.g. Amazon EC2). However, due to the relative infancy of cloud based computing services, there exists uncertainty about the level of information security offered by these services. IaaS cloud services are largely reliant on virtualization technology, which is seen as providing all the security and process isolation a customer might want.