How the shared responsibility model works

Understanding Shared Responsibility in Cloud Computing

Overview of Shared Responsibility Model

• The shared responsibility model delineates the division of security responsibilities between cloud providers and customers, emphasizing that "if you configure or store it, you're responsible for securing it."

• Cloud providers are accountable for securing their controlled infrastructure components, including hardware, networks, and physical security.

• Customers must secure their own configurations, access policies, and user data created within the cloud environment.

Ratios of Responsibility Across Different Models

On-Premises Security

• In an on-premises setup, organizations bear full responsibility for all aspects of infrastructure security through their internal teams.

Infrastructure as a Service (IaaS)

• Transitioning to IaaS shifts some IT security responsibilities to Google Cloud while customers retain control over operating systems and application software.

• Customers are responsible for securing their applications and data while Google Cloud manages physical resources and network security.

Platform as a Service (PaaS)

• With PaaS, Google Cloud assumes greater responsibility by managing physical infrastructure and network security.

• Customers still need to secure any content they produce on the platform, such as code or data.

Software as a Service (SaaS)

• In SaaS models, Google Cloud is primarily responsible for overall security from infrastructure to application level.