INFRASTRUCTURE AS A SERVICE: SECURITY ISSUES IN CLOUD COMPUTING
Cloud computing is current trend in market. It allows resources to be leveraged on per-use basis. It reduces cost and complexity of service providers by means of capital and operational costs. It allows users to access applications remotely. On behalf of user, this construct directs cloud service provider to handle cost of servers, software updates, etc. For both, cloud providers and consumers; integrity, availability, confidentiality, authenticity and privacy are important concerns. Infrastructure as a Service (IaaS) serves as foundation layer for many other delivery models. This paper presents detailed study of IaaS and its components. We present how security at IaaS layer need to be handled carefully as delivery models- Platform as a Service (PaaS) and Software as a Service (SaaS) are built upon IaaS layer. We focus how IaaS security issues- data protection & usage monitoring, end-to-end logging & reporting, infrastructure hardening and end-to-end encryption need to be resolved.