Skip to Main Content
Organisations are increasingly looking towards cloud computing as a new revolutionary technology promising to cut IT costs and achieve agility in operations. This quest is stymied by the significant challenge of security, triggering a dilemma of whether or not to adopt this promising new technology. The problem is exacerbated by the fact that the client has to rely on the claims of the security capabilities of the Cloud Service Provider, with little or no monitoring and validation. In this paper, we analyze the security landscape in detail and propose architecture based on a proactive model which tackles this increasingly difficult problem in a comprehensive manner. A Security Cloud actively monitors the Cloud Service Provider for policy violations. Any policy violation is reported back and accordingly, the client takes informed security decisions.