1
play

1 1.2. Guidelines for Information Security of Cloud Computing - PowerPoint PPT Presentation

Aug 07, 2023 •334 likes •403 views

Agenda Related Polices to Cloud Computing I. Guidelines for Information Security of Cloud II. Computing Cloud Security Certification Scheme in KOREA Cloud Security Certification Program in Korea III. April. 11, 2017 Jungduk (JD) KIM, Ph.

  1. Agenda Related Polices to Cloud Computing I. Guidelines for Information Security of Cloud II. Computing Cloud Security Certification Scheme in KOREA Cloud Security Certification Program in Korea III. April. 11, 2017 Jungduk (JD) KIM, Ph. D. Head, Department of Industrial Security Chair, Research Institute of Security Policies jdkimsac@cau.ac.kr 1/15 Beyond Security 1.1 Act on the Cloud Computing Promotion & the Protection of its Users I. Related Policies to Cloud Computing 3/15 Beyond Security 1

  2. 1.2. Guidelines for Information Security of Cloud Computing Category Main contents of measure II. Guidelines for Information Security of Cloud Computing 4/15 Beyond Security 2.1 Case Study (1/3) 2.1 Case Study (2/3) Category USA FedRAMP Republic of Korea Certification Certification Audit/Assessment Country Certification Criteria Scheme Body Body Certification area Cloud service for federal government Cloud service for public org. Certification Body USA FedRAMP NIST SP 800-53 R4 FedRAMP PMO 17 Domains 325 Controls (Total 38) Numbers of Items 14 Domains 117 Controls ※ based on moderate Standards for Cloud JCISPA JASA JASA Control Information Security Inspect on functional requirements for Reflect legal requirements and additional Items Features ASP∙SaaS Information Disclosure information systems requirements of public org. JAPAN IaaS∙PaaS Certification Systems for ASPIC ASPIC Reference NIST SP 800-53 Rev4 ISO/IEC 27001/17 Safety and Reliability of Data Centre Cloud Services Law of Cloud Development Basis Cloud First Policy ISO/IEC 27001+ Certification Body Article 23 (3) SINGAPORE MTCS-SS ITSC Self regulation (Total 7) FedRAMP PMO UK-G Cloud Risk ISO/IEC 27001+ Certification Body UK CESG - KISA (FedRAMP Program Management Office ) Management Self regulation ISO/IEC 27001+ AUSTRALIA ASD Cloud ASD IRAP Audit/Assessment Self regulation Certification Body (Total 40) ) KISA Body 6/15 7/15 Beyond Security Beyond Security 2

  3. 2.1 Case Study (3/3) 2.2 Summary Information Security Management Cloud Security certification Program Category System(ISMS) (CSAP) Cloud Service v Composed of total 14 domains and 117 controls Assessment subject All Information system service ※ Service for public org. Category Main contents of measure Document review, On-site Inspection, Assessment method Document review, On-site inspection Technical Inspection (Penetration test, Vulnerability test) Number of 18 Domains 14 Domains Items 104 Controls 117 Controls Certificate ISO/IEC 27001 + Specialized Controls Criteria Reference ISO/IEC 27001 (Security of Virtualization, Law of Cloud Development, public org. requirements) 8/15 9/15 Beyond Security Beyond Security 2.3 Additional protection measure for public org. (1/3) 2.3 Additional protection measure for public org. (2/3) v Legal Requirements Category Obligation Notification method Fine Intrusion Notify promptly to users Notifying with Phone, Cell Phone, Notify promptly to users, User Information Less than 10,000 mail, E-mail, text messaging, cloud Notify promptly to Minister of Leakage computing services or any of the USD Science, similar methods Service Notify promptly to users Interruption 10/15 11/15 Beyond Security Beyond Security 3

  4. 2.3 Additional protection measure for public org. (3/3) III. Cloud Security Certification Program 12/15 Beyond Security 3.1 Cloud Security Certification Program Summary 3.2 Assessment Method – Vulnerability Assessment Definition Purpose v On-site verification that the technical measures are appropriately implemented in accordance with the cloud security certification program guidelines for the assets negotiated in the preliminary inspection Auditor and Duration Related Law v Auditor team: About 5 people(Lead Auditor, Source code, CVE, CCE Inspectors) v Duration: 10 business day (Depends on Volume of asset and Service Scope) Standard Assessment method Category Method public org . 14 domains and 117 controls Useautomated analysis tool Use automated analysis tool Assessment Use automated analysis tool 14/15 15/15 Beyond Security Beyond Security 4

  5. 3.2 Assessment Method – Penetration Test Purpose v Examine the possibility of penetration through external network to ensure the cloud service is properly implemented / operated in accordance with the cloud security certification program standard Auditor and Duration v Auditor team: closed v Duration: 10 business day(Adjustable) Subject to assessment v Penetration into cloud service portal through external network v Penetration to the hypervisor or other VM via the user VM v VPN Communication Jungduk Kim Advanced request jdkimcau@gmail.com v Account Information (2 or more), Test allowed time http://security.cau.ac.kr Recommendation v CSP periodically training Penetration test / Response Team Internally 16/15 Beyond Security 5

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Probabilistic Graphical Models Lecture 17: Markov chain Monte Carlo Andrew Gordon Wilson

Probabilistic Graphical Models Lecture 17: Markov chain Monte Carlo Andrew Gordon Wilson

Probabilistic Graphical Models Lecture 17: Markov chain Monte Carlo Andrew Gordon Wilson www.cs.cmu.edu/~andrewgw Carnegie Mellon University March 18, 2015 1 / 45 Resources and Attribution Image credits, inspiration, pointers for further

1.15k views • 45 slides
Condence Sets Based on Sparse Estimators Are Necessarily Large Benedikt M. Ptscher

Condence Sets Based on Sparse Estimators Are Necessarily Large Benedikt M. Ptscher

Condence Sets Based on Sparse Estimators Are Necessarily Large Benedikt M. Ptscher Department of Statistics, University of Vienna Sparse Estimators and the "Oracle" Property Given is a parametric statistical model indexed by a

319 views • 17 slides
Nearest Neighbor Gaussian Processes for Large Spatial Data Abhi Datta 1 , Sudipto Banerjee 2 and

Nearest Neighbor Gaussian Processes for Large Spatial Data Abhi Datta 1 , Sudipto Banerjee 2 and

Nearest Neighbor Gaussian Processes for Large Spatial Data Abhi Datta 1 , Sudipto Banerjee 2 and Andrew O. Finley 3 July 31, 2017 1 Department of Biostatistics, Bloomberg School of Public Health, Johns Hopkins University, Baltimore, Maryland. 2

615 views • 50 slides
New Drugs in AML New version of old drugs Inhibitors of signaling pathways CPX-351

New Drugs in AML New version of old drugs Inhibitors of signaling pathways CPX-351

New Drugs in AML New version of old drugs Inhibitors of signaling pathways CPX-351 FLT3 inhibitors Topo II inhibitors (Vosaroxin) PLK1 inhibitors (VolaserHb) Epigenetic modifiers Apoptosis inducers HMA

722 views • 35 slides
The Power of Unbiased Recursive Partitioning: A Unifying View of CTree, MOB, and GUIDE Lisa

The Power of Unbiased Recursive Partitioning: A Unifying View of CTree, MOB, and GUIDE Lisa

The Power of Unbiased Recursive Partitioning: A Unifying View of CTree, MOB, and GUIDE Lisa Schlosser, Torsten Hothorn, Achim Zeileis http://www.partykit.org/partykit Motivation 1/18 Motivation Other covariates Z 1 , . . . , Z p ? 1/18

460 views • 31 slides
Generic likelihood methods in R Peter Dalgaard Department of Biostatistics University of

Generic likelihood methods in R Peter Dalgaard Department of Biostatistics University of

Generic likelihood methods in R Peter Dalgaard Department of Biostatistics University of Copenhagen Wednesday coffee, February 2008 1 / 15 Overview Pre-history/motivation Current capabilities in R Ideas for extensions 2 / 15

771 views • 48 slides
Overview and History of R Computing for Data Analysis 1 / 16 What is R? What is R? 2 / 16

Overview and History of R Computing for Data Analysis 1 / 16 What is R? What is R? 2 / 16

Overview and History of R Computing for Data Analysis 1 / 16 What is R? What is R? 2 / 16 What is R? R is a dialect of the S language. 3 / 16 What is S? S is a language that was developed by John Chambers and others at Bell Labs. S was

472 views • 16 slides
Polynomial Chaos Acceleration for the Bayesian Inference of Random Fields with Gaussian Priors and

Polynomial Chaos Acceleration for the Bayesian Inference of Random Fields with Gaussian Priors and

Bayesian Inference Coordinate transformation for Uncertain Correlation Function PC surrogate model Inference Example Polynomial Chaos Acceleration for the Bayesian Inference of Random Fields with Gaussian Priors and Uncertain Covariance

573 views • 21 slides
Bayesian calibration and uncertainty quantification of computer models Application to the

Bayesian calibration and uncertainty quantification of computer models Application to the

Bayesian calibration and uncertainty quantification of computer models Application to the simulation of astrophysical radiative shocks Jean Giorla 1 , J. Garnier 2 , . Falize 1 , B. Loupias 1 1 CEA/DAM/DIF, F-91297, Arpajon, France 2

780 views • 30 slides
= + N 1 N M measurements M 1 sparse signal Problem : Solve for x Basis pursuit,

= + N 1 N M measurements M 1 sparse signal Problem : Solve for x Basis pursuit,

Sparse processing / Compressed sensing Model : y = Ax + n , x is sparse = + N 1 N M measurements M 1 sparse signal Problem : Solve for x Basis pursuit, LASSO (convex objective function) Matching pursuit (greedy method)

210 views • 17 slides
Application of K ahler manifold to signal processing and Bayesian inference Jaehyung Choi ,

Application of K ahler manifold to signal processing and Bayesian inference Jaehyung Choi ,

Review on K ahler manifold K ahlerian information geometry for signal processing Geometric shrinkage priors Example: ARFIMA Conclusion Application of K ahler manifold to signal processing and Bayesian inference Jaehyung Choi , 1 ,

264 views • 22 slides
Convex Functions (II) Lijun Zhang zlj@nju.edu.cn http://cs.nju.edu.cn/zlj Outline The

Convex Functions (II) Lijun Zhang zlj@nju.edu.cn http://cs.nju.edu.cn/zlj Outline The

Convex Functions (II) Lijun Zhang zlj@nju.edu.cn http://cs.nju.edu.cn/zlj Outline The Conjugate Function Quasiconvex Functions Log-concave and Log-convex Functions Convexity with Respect to Generalized Inequalities Summary

390 views • 34 slides
Optimization for Machine Learning Lecture 1: Introduction to Convexity S.V . N. (vishy)

Optimization for Machine Learning Lecture 1: Introduction to Convexity S.V . N. (vishy)

Optimization for Machine Learning Lecture 1: Introduction to Convexity S.V . N. (vishy) Vishwanathan Purdue University vishy@purdue.edu July 12, 2012 S.V . N. Vishwanathan (Purdue University) Optimization for Machine Learning 1 / 43

1.15k views • 75 slides
Computing and Communications 2. Information Theory -Entropy Ying Cui Department of Electronic

Computing and Communications 2. Information Theory -Entropy Ying Cui Department of Electronic

1896 1920 1987 2006 Computing and Communications 2. Information Theory -Entropy Ying Cui Department of Electronic Engineering Shanghai Jiao Tong University, China 2017, Autumn 1 Outline Entropy Joint entropy and conditional

778 views • 50 slides
Note on von Neumann and R enyi entropies of a graph Jephian C.-H. Lin Department of

Note on von Neumann and R enyi entropies of a graph Jephian C.-H. Lin Department of

Note on von Neumann and R enyi entropies of a graph Jephian C.-H. Lin Department of Mathematics, Iowa State University April 9, 2017 Graduate Student Combinatorics Conference 2017 Entropies of a graph 1/15 Department of Mathematics, Iowa

379 views • 20 slides
Entropy, Relative Entropy, Cross Entropy Entropy Entropy, H(x) is a measure of the uncertainty of

Entropy, Relative Entropy, Cross Entropy Entropy Entropy, H(x) is a measure of the uncertainty of

Entropy, Relative Entropy, Cross Entropy Entropy Entropy, H(x) is a measure of the uncertainty of a discrete random variable. Properties: H(x) >= 0 Entropy Entropy Lesser the probability for an event, larger the entropy.

471 views • 21 slides
Randomness in Computing L ECTURE 21 Last time Probabilistic method Sample and Modify

Randomness in Computing L ECTURE 21 Last time Probabilistic method Sample and Modify

Randomness in Computing L ECTURE 21 Last time Probabilistic method Sample and Modify The Second Moment Method Today Probabilistic method The Second Moment Method Conditional expectation inequality Lovasz Local Lemma

316 views • 16 slides
The Fundamental Theorem prof. dr Arno Siebes Algorithmic Data Analysis Group Department of

The Fundamental Theorem prof. dr Arno Siebes Algorithmic Data Analysis Group Department of

The Fundamental Theorem prof. dr Arno Siebes Algorithmic Data Analysis Group Department of Information and Computing Sciences Universiteit Utrecht PAC Learnability We have seen that H is PAC learnable if H is finite not PAC learnable if

575 views • 38 slides
Wasserstein barycenters over Riemannian manifolds Brendan Pass (joint work with Y.H. Kim (UBC))

Wasserstein barycenters over Riemannian manifolds Brendan Pass (joint work with Y.H. Kim (UBC))

Wasserstein barycenters over Riemannian manifolds Brendan Pass (joint work with Y.H. Kim (UBC)) University of Alberta Dec. 10, 2014 Brendan Pass (joint work with Y.H. Kim (UBC)) Wasserstein barycenters over Riemannian manifolds Motivation:

441 views • 42 slides
Algorithms for Distributed Functional Monitoring

Algorithms for Distributed Functional Monitoring

Algorithms for Distributed Functional Monitoring AT&T Labs Google Research HKUST Sensor Networks

287 views • 17 slides
Unsupervised Learning Weinan Zhang Shanghai Jiao Tong University http://wnzhang.net

Unsupervised Learning Weinan Zhang Shanghai Jiao Tong University http://wnzhang.net

2018 EE448, Big Data Mining, Lecture 7 Unsupervised Learning Weinan Zhang Shanghai Jiao Tong University http://wnzhang.net http://wnzhang.net/teaching/ee448/index.html ML Problem Setting First build and learn p ( x ) and then infer the

561 views • 52 slides
CS480/680 Machine Learning Lecture 5: January 21 st , 2020 Information Theory Zahra Sheikhbahaee

CS480/680 Machine Learning Lecture 5: January 21 st , 2020 Information Theory Zahra Sheikhbahaee

CS480/680 Machine Learning Lecture 5: January 21 st , 2020 Information Theory Zahra Sheikhbahaee Sources: Elements Of Information Theory Information Theory, Inference, and Learning Algorithms University of Waterloo CS480/680 Winter 2020 Zahra

339 views • 16 slides
Robust Hidden Markov Models Inference in the Presence of Label Noise Benot Frnay February 7,

Robust Hidden Markov Models Inference in the Presence of Label Noise Benot Frnay February 7,

Robust Hidden Markov Models Inference in the Presence of Label Noise Benot Frnay February 7, 2014 What is Machine Learning ? What is Machine Learning ? Machine learning is about learning from data . A model is inferred from a training set

986 views • 73 slides
H Filtering of Uncertain LPV Systems with Time-Delay C.Briat, O.Sename and JF.Lafay August

H Filtering of Uncertain LPV Systems with Time-Delay C.Briat, O.Sename and JF.Lafay August

H Filtering of Uncertain LPV Systems with Time-Delay C.Briat, O.Sename and JF.Lafay August 2009 ECC09 - Budapest, Hungary C.Briat, O.Sename and JF.Lafay corentin.briat@briat.info 1/21 Outline Introduction Stability of Uncertain LPV

439 views • 21 slides

More recommend