Applying security policies and service level agreement to IaaS service model to enhance security and transition

Over a decade ago, cloud computing became an important topic for small, medium and large businesses alike. The new concept promises scalability, security, cost reduction, portability and availability. While addressing the cloud concepts over the past several years, there have been intensive discussions about the importance of the different cloud computing service model. Moreover, there were lots of discussions about the risks in migrating to cloud computing. Therefore, this paper reviews the concept of cloud computing, security policies and concentrates on Infrastructure as a Service (IaaS) model. Also, the paper examines the risks encountered by implementing the Infrastructure as a Service (IaaS) model in organizations. Furthermore, the paper’s aim is to discuss the role of security policies, service level agreement (SLA) and compliance for enhancing the security of the IaaS service model by presenting several applicable policies.