원문정보
초록
영어
For the purpose of effectively utilizing & managing ICT resources and reducing costs, various companies are using cloud service as their core technological strategy. In spite of such effort, cloud service security, information protection and performance are being considered as areas that need to be considered when implementing cloud service. In Korea, cloud service certification system is being used to ensure user reliability for cloud service and high-quality cloud services are being certified by considering their quality, security and ongoing service capability. Since current certification system is being utilized focusing on management system, however, it lacks the consideration on technical aspects. Accordingly, this study aims to examine information assurance systems such as ISO 20071 and ISMS to propose a framework for enhancing the cloud service certification system of Korea by focusing on security. The findings of this study are expected to help in increasing the use of cloud service by improving user reliability through the increased utilization of cloud service certification system of Korea.
목차
1. Introduction
2. Korean Cloud Service Certification System
2.1 Certification Target
2.2 Operation System
2.3 Screening Criteria
3. Cloud Service Security Threat Factors Sur
4. Security Threat Factors Analysis in Cloud Environment
4.1 External Attack on Cloud Computing
4.2 Attack on Virtualization Technological Vulnerability
4.3 Attack Taking Advantage of Cloud Environment
4.4 Threat from Cloud Internal Attack
4.5 Threat against Network
4.6 Compliance Threat, etc.
5. Development of Cloud Service Security Evaluation Items
6. Improvement Framework of Korean Certification System for Cloud Service Focus on Security
7. Conclusion
References