search menu icon-carat-right cmu-wordmark

Overview of Risks, Threat, and Vulnerabilities Faced in Moving to the Cloud

July 2019 Technical Report
Timothy Morrow, Kelwyn Pender, Carrie Lee (U.S. Department of Veteran Affairs), Donald Faatz

This report examines the changes to risks, threats, and vulnerabilities when applications are deployed to cloud services.

Publisher:

Software Engineering Institute

CMU/SEI Report Number

CMU/SEI-2019-TR-004

Abstract

As organizations develop new applications in or migrate existing applications to cloud services, they face changes in securing their information and applications. This report examines the changes to risks, threats, and vulnerabilities when applications are deployed to cloud services. Five cloud-unique threats and risks are identified along with seven threats and risks that exist on-premises and in cloud computing. For each of these threats and risks, recommendations are made for managing and mitigating the threats and risks when using cloud services.