Shared responsibility model in the cloud
Shared Responsibility Model in the Cloud
In this lesson, you’ll learn about the Shared Responsibility Model, which outlines the division of responsibilities between the cloud provider (e.g., Microsoft Azure) and the customer across different cloud service models (IaaS, PaaS, SaaS).
🔄 What is the Shared Responsibility Model?
- The Shared Responsibility Model defines which security tasks are handled by the cloud provider and which by the customer.
- The level of responsibility shifts depending on whether you are using IaaS, PaaS, or SaaS.
🔐 Responsibilities Breakdown
| Responsibility | Cloud Provider | Customer |
|---|---|---|
| Physical security of datacenters | ✔️ | ❌ |
| Network controls (firewalls, traffic filtering) | Depends on model | Depends on model |
| Data classification and protection | ❌ | ✔️ |
| User access management | ❌ | ✔️ |
| Application-level controls (e.g., encryption) | Partial | Partial |
📊 Responsibilities by Cloud Model
- IaaS: The customer is responsible for most security aspects including OS, network controls, and data.
- PaaS: The cloud provider manages more, such as the OS and runtime. The customer still handles apps and data.
- SaaS: The provider manages nearly everything. The customer focuses on data and user access.
💡 Summary
- Security responsibilities are shared between Azure and the customer.
- The degree of responsibility depends on the cloud service model (IaaS, PaaS, SaaS).
- Customers are always responsible for data, identities, and access control.
✅ Next Lesson
Lesson 2.1: Core Azure architectural components
تعليقات
إرسال تعليق