在雲計算領域有幾個隱私問題，保密性就是其中之一。有來自用戶的主要威脅。這包括從內部使用雲計算機。有惡意云提供商用戶和惡意云客戶用戶。用戶還包括第三方性質的惡意用戶，這些用戶要么支持雲提供商，要么支持客戶的組織(Puthal et al.， 2015)。內部人員查看客戶數據的威脅存在於雲計算中。這種威脅是一個更高的風險，因為每個交付模型都可以滿足內部方式的多個用戶的需求。例如，Saas是雲的管理員提供者和客戶，Paas是測試環境中的管理人員和應用程序與IaaS開發人員的應用程序。此應用程序有助於促進來自第三方平台的顧問。來自外部的攻擊者的威脅的方式是多方面的,包括雲基礎設施的攻擊通過遠程軟件,雲應用程序攻擊遠程軟件,雲本身受到遠程硬件、端點的雲用戶的組織兩個遠程攻擊的硬件和軟件,客戶雲用戶和雲提供商的用戶在社會工程(狄龍扮演的一個角色et al ., 2010)。
認為,外部攻擊者帶來的威脅可能會適用於公共互聯網體驗雲,但云交付的所有形式的模型是由攻擊者的外部影響的性質,特別是在這樣的私人云在目標用戶的端點。擁有大量數據的雲提供商還沉迷於存儲個人信息、敏感的知識產權或政府財產、信用卡信息等。這些數據受到討論組的隱私攻擊，它們試圖用大量資源生成數據。這涉及到社會工程的威脅、供應鏈攻擊和專用攻擊者的硬件攻擊(Hashem et al.， 2015)。數據洩漏是另一個保密因素，其中存在安全訪問權限在各個領域失效的威脅，雲備份和數據的物理和電子傳輸系統失效。因此，人們認為，在具有潛在競爭對手性質的各種組織中，數據的大規模洩漏所帶來的威脅，涉及到使用相同的雲提供商。這可能是由於人為錯誤或硬件故障而導致的信息洩露。
There are several privacy issues within the domain of cloud computing, and confidentiality is one of them. There are major threats from the user. This includes using the cloud computer from the inside. There are cloud provider users of malicious kind and malicious customer user of cloud. The users are also inclusive of malicious user of third party nature who either support the provider of cloud or the organizations of the customer (Puthal et al., 2015). The threat present of insiders viewing the data of customer, are held within the cloud. This threat is a higher risk as each model of delivery can surface the requirement of multiple users of internal manner. For an instance, Saas is an administrator provider and customer of cloud, Paas is an application for managers within the environment of testing and developers of application and IaaS. This application helps in facilitating the consultants from third party platform. The threats from the attacker of external manner are various, including the cloud infrastructure attacked through remote software, cloud applications attacked by the remote software, cloud itself attacked by the remote hardware, endpoint of the cloud user’s organizations attacked by the both remote hardware and software, customer users and cloud along with provider users of cloud within the social engineering (Dillion et al., 2010).
It is perceived that the threats arising from the external attacker might be applicable to the public internet that experiences cloud but all forms of models of cloud delivery are impacted by the attackers of external nature, especially in clouds that are private wherein the target is the endpoints of user. Providers of cloud holding large amount of data also indulge in storing the personal information, sensitive intellectual or governmental property, details of credit cards etc. These are subjected to privacy attacks from the discussed groups with an attempt to yield data with considerable resources. This involves the threat of social engineering, supply chain attacks and hardware attacks by the attackers that are dedicated (Hashem et al., 2015). Leakage of data is yet another factor of confidentiality wherein there are threats of security access rights failed throughout various domains, transport systems failed of both physical and electronic nature for the backups and data of cloud. Hence, it is regarded that threat from the vastly spread leakage of data amid various organizations of potential competitor nature, engage in utilizing the same provider of cloud. This can be due to the error of human or hardware fault will result to the compromised information.