Infrastructure rent is a business model in which a company earns money mainly by giving others access to essential infrastructure, such as networks, cloud capacity, spectrum, or management platforms, instead of delivering a fully integrated service. The owner keeps the physical or technical layer, while customers depend on that layer to run their own operations. In telecom and cloud markets, this can shift value from the operator to the platform that controls the automation and control plane.
In cyber security, infrastructure rent matters because dependency on rented infrastructure creates control-plane risk. If the provider manages provisioning, routing, orchestration, or incident response, a compromise or misconfiguration at that layer can affect many tenants at once. Attackers often target admin APIs, management consoles, identity systems, and automation pipelines to gain broad control. Defenders reduce this risk with least privilege, strong tenant isolation, audit logging, configuration review, portability plans, and regular recovery testing.