Given that use of cloud computing services spans across the consumer and the provider organizations, responsibility for aspects of security can be spread across both organizations, with the potential for vital parts of the defenses to be left unguarded
if there is a failure to allocate responsibility clearly.