Cloud Security
To protect cloud based workloads with data, applications, and Infrastructure environment
Cloud Security Concerns
- Cloud provider’s Security Issues
- Customer Security Issues
Cloud security controls
- Preventive controls
- Detective controls
- Administrative Controls
- Corrective controls
- Transparency
- Innovation and Research
Cloud Vulnerability and Penetration (C-VAPT) Testing:
Cloud VAPT is done with the Cloud provider’s acceptance.
White-box testing
Test with prior knowledge of internal systems, network configuration, and implementation.
Grey-box testing
Test with partial knowledge of internal systems, network configuration, and implementation.
Black-box testing
Test with no prior knowledge of internal systems, network configuration, and implementation.