ans

Running head: DBA AND SHARED RESPONSIBILITY SECURITY MODEL

1

DBA AND SHARED RESPONSIBILITY SECURITY MODEL 3

DBA and shared responsibility security model

Students name:

Professor:

Date:

A shared security responsibility model refers to an acceptable tool that boosts the awareness and the service provide (Cloud provider) is the one responsible for securing the cloud. The users who are often the buyers are responsible for the security of information in clouds. Cloud service buyer is responsible for the security in the premises and cloud .before decides to use clouds he or she must check if the data is completely secure with the use of clouds, is data transfer fast between different cloud service providers and lastly how safe is data on the occasion where subpoena occurs to the cloud providers, check on the industry data protection and internal mandates.

Security is more vital to the two parties and they must check on how the secure the service is before entering into the contract. The importance of the shared responsibility is that it helps the customers bt decreasing the operational burden. There is also assistance in controlling and managing several properties from the operating system of the host, physical security and virtualization. The buyer of the service is responsible for the management of the guests operating system security patches and updates .more emphasis should be put in the consideration of services that can be chosen because responsibilities also do differ as services used also differ (LaRock,2010). With the shared responsibility customers can control and are flexible hence the user is granted the ability to control and deploy .the responsibilities can differentiate as security of the clouds and the security in clouds. Security in clouds refers to the customers. The shared security responsibilities that need to be shared and the DBA must put into consideration include PaaS, SaaS, and IaaS. The three defines and dictates who is responsible for a particular need in security which is under the CSCC (Cloud standards customer council)

The DBA should be aware of the shared security responsibility in the form of (IaaS) Infrastructure as a service. Under this infrastructure, the customer or the user of the cloud service must be aware that the cloud provider or the supplier is responsible for ensuring that basic infrastructure is secure .and he is responsible for the security of infrastructures like the virtual machines, discs, and network (Jamsa,2012). The matters of physical security are the responsibility of the provider. The premises that house the data center is supposed to be secure via physical security. The users of cloud services are also responsible for the security of the Operating system, their data and the software that enables them to run

Another important aspect that the Dba needs to take into consideration is the SaaS or (Software as a service) (Mahmood,2013). Under the model, the service provider is responsible for the software stack and infrastructure because the user of the buyer of the service has little or minimal control. many security needs are linked into by the service provider because he controls almost all aspects of it while the user has limited control and other components are beyond his control.

As a service, the user I the service or the purchaser is responsible for the security aspect of the PaaS according to the cloud standard customer council. The client is responsible for the security and management of the virtual network, operating system, middleware, interface, and virtual machines. For a DBA to be able to move to clouds the awareness about who is responsible for the security of the three infrastructures is important and consideration must be involved in what element is to be shared.

References

Jamsa, K. (2012). Cloud computing. Jones & Bartlett Publishers.

LaRock, T. (2010). DBA Survivor: Become a rock-star DBA. Apress.

Mahmood, Z. (2013). Cloud computing: Methods and practical approaches. Springer Science & Business Media.