Based on the aforementioned cloud security shared responsibilities, which of the following cloud computing service models is enforced in Tom’s organization?

Tom Holland works as a cloud security engineer in an IT company located in Lansing, Michigan. His organization has adopted cloud-based services wherein user access, application, and data security are the responsibilities of the organization, and the OS, hypervisor, physical, infrastructure, and network security are the responsibilities of the cloud service provider.

Based on the aforementioned cloud security shared responsibilities, which of the following cloud computing service models is enforced in Tom’s organization?
A . Infrastructure-as-a-Service
B . Platform-as-a-Service
C . On-Premises
D . Software-as-a-Service

View Answer

Answer: B

Explanation:

In the Infrastructure-as-a-Service (IaaS) cloud computing service model, the cloud service provider is responsible for managing the infrastructure, which includes the operating system, hypervisor, physical infrastructure, and network security. At the same time, the customer is responsible for managing user access, applications, and data security.

Cloud Service Provider Responsibilities: In IaaS, the provider is responsible for the physical hardware, storage, and networking capabilities. They also ensure the virtualization layer or hypervisor is secure. Customer Responsibilities: The customer, on the other hand, manages the operating system, middleware, runtime, applications, and data. This includes securing user access and application-level security measures.

Flexibility and Control: IaaS offers customers a high degree of flexibility and control over their environments, allowing them to install any required platforms or applications.

Examples of IaaS: Services such as Amazon EC2, Google Compute Engine, and Microsoft Azure Virtual

Machines are examples of IaaS offerings.

Reference: The shared responsibility model is a fundamental principle in cloud computing that outlines the security obligations of the cloud service provider and the customer to ensure accountability and security in the cloud. In the IaaS model, while the cloud provider ensures the infrastructure is secure, the customer must secure the components they manage.