Mitigating Threats and Security Metrics in Cloud Computing

Cloud computing is a distributed computing model that still faces problems. Many new innovative and emerge technique to take advantage of its features and among the research challenges found in the cloud. In this article, we explore the security threats and Risk Assessment to Cloud Computing, attack mitigation framework and the risk-based dynamic access control for cloud computing. Common security threats to Cloud Computing are explored and these threats are addressed through acceptable measures through governance and effective risk management using a tailored Security Risk Approach (SRA). Most existing Threat and Risk Assessment (TRA) schemes for cloud services use a converse thinking approach to develop theoretical solutions for minimizing the risk of security breaches at a minimal cost. Also, the present study proposes an improved Attack-Defense Tree mechanism designated as iADTree, for solving the TRA problem in cloud computing environments.