This paper explores and examines the cybersecurity landscape in cloud computing environment, focusing on the threats, vulnerabilities, and countermeasures associated with three primary service models as well as four delivery models. As organisations increasingly adopt cloud services to enhance efficiency and scalability, understanding the specific security challenges posed by each model is crucial for safeguarding sensitive data and maintaining operational integrity. In addition, the paper analyses common, for instance, IaaS may expose users to vulnerabilities related to virtual machines, while PaaS can present risks associated with application development environments. The paper discusses effective countermeasures, including encryption, identity and access management, robust security mechanisms, and comprehensive security services designed to protect data and applications. Additionally, it outlines the information security goals necessary for establishing a secure cloud environment. Lastly, this paper provides a comprehensive overview, which aims to equip IT professionals and decision-makers with the knowledge necessary to enhance their cloud security posture and mitigate risks effectively.
Bichi et al. (Tue,) studied this question.