Challenging Security Requirements for U.S. Government Cloud Computing Adoption
In order to achieve adoption of cloud computing for the federal government, it is necessary to address the security and privacy concerns that federal agencies have when migrating their services to a cloud environment. To further exacerbate the situation, there are few documented details that directly address how to achieve some security aspects in a cloud environment.
The purpose of this document is to provide an overview of the high-priority security and privacy challenges perceived by federal agencies as impediments to the adoption of cloud computing. The document provides descriptions of the existing mitigations to these security and privacy impediments. If no mitigations are listed, then ongoing efforts that could lead to mitigations are described. In the cases where no ongoing efforts were identified, the document makes recommendations for possible mitigation or references existing best practices.
Use the requirements, examples and subsequent mitigation strategies in this NIST document to address any cloud security concerns within your own organization.
The attached zip file includes:
- Intro Page.pdf
- Terms and Conditions.pdf
- Challenging Security Requirements for Cloud Adoption.pdf