by Angela Guess
The National Institute of Standards and Technology (NIST) has released a new report entitled Guidelines on Security and Privacy in Public Cloud Computing. The report is “geared at informing IT leaders, executives and security network administrators involved in cloud computing initiatives, delves into threats, risks and safeguards to public cloud environments. NIST noted that, while cloud adoption has grown immensely in the last few years, in terms of maturity it ‘remains a work in progress.’ Among the key elements in the report for shifting data, applications and infrastructure to the cloud, NIST expressly pointed to internal accountability of information, even when accessed off-premise, as a painstaking yet vital initiative. In addition, NIST warned that deployments require increased attention to data governance and compliance due to a perceived lack of information control.”
Co-author of the report Tim Grance stated, ““Public cloud computing and the other deployment models are a viable choice for many applications and services. However, accountability for security and privacy in public cloud deployments cannot be delegated to a cloud provider and remains an obligation for the organization to fulfill.”
Download the complete 80-page report here.
