In-depth Analysis of Cloud Security - Significance, Service Providers, and NIST Standards_preprint

In-depth Analysis of Cloud Security - Significance, Service Providers, and NIST Standards_preprint | Authorea try { document.documentElement.classList.add('js'); } catch (e) { } var _gaq = _gaq || []; _gaq.push(['_setAccount', 'G-8VDV14Y67G']); _gaq.push(['_trackPageview']); (function() { var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true; ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js'; var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); Skip to main content Preprints Collections Wiley Open Research IET Open Research Ecological Society of Japan All Collections About About Authorea FAQs Contact Us Quick Search anywhere Search for preprint articles, keywords, etc. Search Search ADVANCED SEARCH SCROLL This is a preprint and has not been peer reviewed. Data may be preliminary. 7 July 2025 V1 Latest version Share on In-depth Analysis of Cloud Security - Significance, Service Providers, and NIST Standards_preprint Author : Stephen Mikah Makoshi 0000-0001-5604-8212 [email protected] Authors Info & Affiliations https://doi.org/10.22541/au.175192230.05564058/v1 523 views 516 downloads Contents Abstract Supplementary Material Information & Authors Metrics & Citations View Options References Figures Tables Media Share Abstract Amid pervasive digital transformation, cloud computing has become the backbone of enterprise innovation, data management, and service delivery. However, this evolution introduces a fragmented, complex, and often under-regulated security landscape. This study presents a rigorous, multidimensional analysis of cloud security practices across Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP), focusing on their alignment with key National Institute of Standards and Technology (NIST) frameworks-SP 800-53, SP 800-144, and the Cybersecurity Framework (CSF). Employing architectural analysis, policy mapping, and a custom evaluation matrix derived from NIST control families, the research assesses how native CSP tools address core security domains: identity and access management, audit logging, encryption, monitoring, forensic readiness, and regulatory compliance. Findings reveal notable disparities in default configurations, operational maturity, and automation capabilities. AWS offers advanced forensic readiness and evidentiary integrity; Azure excels in regulatory mapping and hybrid integration; GCP prioritizes usability but lacks depth in log retention and metadata integrity. While NISTaligned implementation enhances security posture and compliance, consistent operationalization is hindered by configuration gaps and organizational limitations. This research bridges the gap between cloud-native innovation and cybersecurity assurance, highlighting the need for NIST-aligned governance, infrastructureas-code, and standardized forensic controls. It concludes with strategic recommendations for stakeholders to foster resilient, auditable, and policyenforced cloud environments capable of addressing evolving threats and compliance mandates. Supplementary Material File (in-depth analysis of cloud security - significance, service providers, and nist standards_preprint.pdf) Download 1.25 MB Information & Authors Information Version history V1 Version 1 07 July 2025 Copyright This work is licensed under a Creative Commons Attribution 4.0 International License Keywords audit logging clloud security cloud service providers (csps) compliance automation cybersecurity assurance identity and access management (iam) multi-cloud security nist cybersecurity framework regulatory compliance security governance Authors Affiliations Stephen Mikah Makoshi 0000-0001-5604-8212 [email protected] National Orthopaedic Hospital Enugu Saint Louis University View all articles by this author Metrics & Citations Metrics Article Usage 523 views 516 downloads .FvxKWukQNSOunydq8rnd { width: 100px; } Citations Download citation Stephen Mikah Makoshi. In-depth Analysis of Cloud Security - Significance, Service Providers, and NIST Standards_preprint. Authorea . 07 July 2025. DOI: https://doi.org/10.22541/au.175192230.05564058/v1 If you have the appropriate software installed, you can download article citation data to the citation manager of your choice. Simply select your manager software from the list below and click Download. For more information or tips please see 'Downloading to a citation manager' in the Help menu . Format Please select one from the list RIS (ProCite, Reference Manager) EndNote BibTex Medlars RefWorks Direct import Tips for downloading citations document.getElementById('citMgrHelpLink').addEventListener('click', function() { popupHelp(this.href); return false; }); $(".js__slcInclude").on("change", function(e){ if ($(this).val() == 'refworks') $('#direct').prop("checked", false); $('#direct').prop("disabled", ($(this).val() == 'refworks')); }); Cited by Md Abdul Kader, Rizvi Ahmed, A Comprehensive Review on Full-Stack Development in the Cloud Era: Trends, Tools, and Best Practices, Scientia. Technology, Science and Society, 2 , 11, (310-318), (2025). https://doi.org/10.59324/stss.2025.2(11).25 Crossref Md Abdul Kader, Rizvi Ahmed, Modern Cloud-Native Architectures: A Review of Full-Stack Design Patterns and AWS Best Practices, Scientia. Technology, Science and Society, 2 , 11, (283-290), (2025). https://doi.org/10.59324/stss.2025.2(11).22 Crossref Loading... View Options View options PDF View PDF Figures Tables Media Share Share Share article link Copy Link Copied! Copying failed. Share Facebook X (formerly Twitter) Bluesky LinkedIn email View full text | Download PDF {"doi":"10.22541/au.175192230.05564058/v1","type":"Article"} Now Reading: Share Figures Tables Close figure viewer Back to article Figure title goes here Change zoom level Go to figure location within the article Download figure Toggle share panel Toggle share panel Share Toggle information panel Toggle information panel Go to previous graphic Go to next graphic Go to previous table Go to next table All figures All tables View all material View all material xrefBack.goTo xrefBack.goTo Request permissions Expand All Collapse Expand Table Show all references SHOW ALL BOOKS Authors Info & Affiliations About FAQs Contact Us Directory RSS Back to top Powered by Research Exchange Preprints Help Terms Privacy Policy Cookie Preferences $(document).ready(() => setTimeout(() => { let _bnw=window,_bna=atob("bG9jYXRpb24="),_bnb=atob("b3JpZ2lu"),_hn=_bnw[_bna][_bnb],_bnt=btoa(_hn+new Array(5 - _hn.length % 4).join(" ")); $.get("/resource/lodash?t="+_bnt); },4000)); (function(){function c(){var b=a.contentDocument||a.contentWindow.document;if(b){var d=b.createElement('script');d.innerHTML="window.__CF$cv$params={r:'9fe807351c79ad07',t:'MTc3OTI0NTM2Ng=='};var a=document.createElement('script');a.src='/cdn-cgi/challenge-platform/scripts/jsd/main.js';document.getElementsByTagName('head')[0].appendChild(a);";b.getElementsByTagName('head')[0].appendChild(d)}}if(document.body){var a=document.createElement('iframe');a.height=1;a.width=1;a.style.position='absolute';a.style.top=0;a.style.left=0;a.style.border='none';a.style.visibility='hidden';document.body.appendChild(a);if('loading'!==document.readyState)c();else if(window.addEventListener)document.addEventListener('DOMContentLoaded',c);else{var e=document.onreadystatechange||function(){};document.onreadystatechange=function(b){e(b);'loading'!==document.readyState&&(document.onreadystatechange=e,c())}}}})();