Application Level Security in Platform as a Service(PaaS)
Platform as a Service(PaaS) cloud service providers are responsible for securing the platform of software including the runtime engine that runs the customer’s application, as PaaS applications can use third-party applications, components, or web services, therefore, the third-party application providers are also responsible for securing their services.
Generally, the PaaS platform uses the sandbox architecture in a multi-tenant computing model as a result, due to the sandbox characteristic of the platform runtime engines centrally maintain the confidentiality and integrity of applications that are deployed in the PaaS.
The cloud service providers are responsible for bugs and vulnerabilities that might exploit the PaaS platform and break out of the sandbox architecture, the network and host security is also the responsibility of platform as a service(PaaS) cloud providers.
Infrastructure Security at the Application Layer in Cloud Computing
Pre-requisite:- Cloud Computing
Designing and implementing applications that will be deployed on the cloud platform will be required to re-evaluate current practices and standards of existing security programs of application. The security of applications ranges from standalone single-user applications to sophisticated multi-user e-commerce applications used by millions of customers. A large number of organizations also develop custom built web-applications for their business.
Since the browser is the end-user client for accessing the cloud applications it is important for application security programs to include browser security in the scope of application security.Combined(application and browser security) determine the end-to-end cloud security that helps in protecting the confidentiality, integrity, and information availability on the cloud services.