Which publication from the United States National Institute of Standards and Technology pertains to defining cloud concepts and definitions for the various core components of cloud computing?
Click on the arrows to vote for the correct answer
A. B. C. D.B.
NIST Special Publications 800-145 is titled "The NIST Definition of Cloud Computing" and contains definitions and explanations of core cloud concepts and components.
The correct answer to the question is B. SP 800-145.
The United States National Institute of Standards and Technology (NIST) is a non-regulatory agency of the US Department of Commerce that develops and promotes technology, standards, and measurements to enhance economic security and public safety. In the context of cloud computing, NIST has published several special publications (SPs) to provide guidance and recommendations to organizations on how to secure their cloud-based environments.
SP 800-145 is titled "The NIST Definition of Cloud Computing," and it provides an overview of cloud computing and its essential characteristics, deployment models, service models, and other key concepts. The publication defines cloud computing as "a model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction."
The publication also describes the five essential characteristics of cloud computing, which are on-demand self-service, broad network access, resource pooling, rapid elasticity, and measured service. In addition, it explains the three main service models of cloud computing, which are Software as a Service (SaaS), Platform as a Service (PaaS), and Infrastructure as a Service (IaaS), as well as the four main deployment models, which are private cloud, community cloud, public cloud, and hybrid cloud.
SP 800-153, on the other hand, is titled "Guidelines for Securing Wireless Local Area Networks (WLANs)," and it provides recommendations for securing wireless networks. SP 800-53 is titled "Security and Privacy Controls for Federal Information Systems and Organizations," and it provides a catalog of security and privacy controls for federal information systems and organizations. Finally, SP 800-40 is titled "Creating a Patch and Vulnerability Management Program," and it provides guidance on how to create and implement a vulnerability and patch management program.
In conclusion, the publication from the United States National Institute of Standards and Technology that pertains to defining cloud concepts and definitions for the various core components of cloud computing is SP 800-145.