Your browser does not allow storing cookies. We recommend enabling them.

SaaS (Software-as-a-Service)

Software-as-a-Service (SaaS) is a cloud service model where the vendor runs a software application in the cloud, and customers are only given access to that application (not the operating system or even the platform, middleware, or programming environment used to develop the application). However, some applications may offer their own programming interfaces to customers.

A SaaS application is often itself hosted in an IaaS cloud offering provided by a different service provider - most commonly the Amazon Cloud.

Sometimes a software business model based on annual (or monthly) license fees is also called SaaS. However, we distinguish that as a separate topic, and use SaaS to strictly refer to software offered from the cloud.

Security Considerations

SaaS raises new security concerns related to vendor security practices, identity and access management, backups, and business continuity. See the separate page on SaaS security for more information.


 

 
PrivX
 

 

 
What to read next:

  • Reduce Secure Shell risk. Get to know the NIST 7966.



    The NISTIR 7966 guideline from the Computer Security Division of NIST is a direct call to action for organizations regardless of industry and is a mandate for the US Federal government.
    Download now
  • ISACA Practitioner Guide for SSH



    With contributions from practitioners, specialists and SSH.COM experts, the ISACA “SSH: Practitioner Considerations” guide is vital best practice from the compliance and audit community.
    Download now