Besides the apparent challenges, Cloud computing can also lead to new opportunities in the fields of
security, privacy and trust for the Cloud users:
1. Re-perimeterise around the core internal and sensitive data by migrating public data and applications
to the cloud. Outsourcing all publically available systems to specialised partners removes the need for
maintaining a complex, vulnerable and expensive internal Internet Street. Instead, the renewed
perimeter around the core data creates new opportunities for implementing fine-grained access controls.
2. Transfer the risks associated with cyber terrorism, denial-of-service and internet crime to the Service
Provider. Future projections predict increasing importance of cyber terrorism and organised internet
crime. Cloud users can easily outsource the specialised defence against these threats
3. Outsource parts of the compliance efforts (e.g. PCI DSS) to the Cloud providers, and make the providers
accountable for a predefined set of compliance rules.
4. Reduce the potential of human errors and rely on the increased autonomy of cloud platforms.
Selfmonitoring and self-healing systems will reduce human interventions for regular maintenance of the IT
5. Use the disperse characteristics of the Cloud to build flexible and high performing contingency and
disaster recovery capabilities.
On the other hand, the Cloud service providers can use other Cloud services for their own benefit, which
generates the following opportunities for the Cloud service providers:
a. Focus on the business offering by transferring the risks associated with identity management and
verification to built-for-purpose Identity Providers, such as OpenID. There are currently already some
initiatives to implement such model where, for example, telecom providers offer identity verification
services to online booking agencies