DOI QR코드

DOI QR Code

Survey and Analysis on Security Control Schema in Cloud Assurance Criteria

  • Kim, Jong-Chul (Research Department, Korea Association of Cloud Industry) ;
  • Kim, Nam-Ju (Research Department, Korea Association of Cloud Industry) ;
  • Kou, Kab-Seung (R&D Center, Korea Security Evaluation Laboratory) ;
  • Min, Young-Gi (Research Department, Korea Association of Cloud Industry)
  • Received : 2017.09.05
  • Accepted : 2017.10.06
  • Published : 2017.10.31

Abstract

On September 9, 2015, the South Korean Ministry of Science and ICT(the "MSIT") established and announced the "Information Protection Measures for Vitalization of Cloud Services" in anticipation that the use of cloud computing would actively increase based on the implementation of the Act on Cloud Computing Advancement and User Protection(the "Cloud Computing Act") on September 28, 2015. In addition, the K-ICT Cloud Computing Activation Plan(Nov. 15) announced the basic plan for the development of cloud computing, and decided to establish info rmation security scheme to improve the level of cloud information protection. Accordingly, The Korea Internet Security Agency(the "KISA") has implemented the "Cloud Security Assurance Program". In this paper survey and analyze the international cloud security criteria and security certification criteria of major countries, and discusses the status of Korea cloud certification system.

Keywords

Acknowledgement

Supported by : Korea Institute for Advancement of Technology(KIAT)