Interpreting the Cloud Security Guide v3.0

Zhao Grain is now the NSFocus Chief Strategic officer, responsible for the company's Research institute and Strategic Planning, as well as the Cloud Security Alliance (csa,cloud Alliance) China branch of the initiator and director. Zhao Food in the enterprise IT and security architecture, strategic planning and so on have a wealth of experience, before joining the Green Alliance, Zhao Food in Lenovo Group as it architect and security operations director, in the CA China as the chief advisor, in the Internet Security System (China) Co., Ltd. as chief strategic officer, in China Telecom Data Bureau as senior engineer.

csa--International authoritative Cloud Security organization

Founded in 2009, CSA is a non-profit organization designed to promote the best security practices in the cloud computing environment and to provide security protection for other computing through cloud computing technology. At present, CSA has been widely recognized by the industry, corporate members covering telecommunications operators, it and network equipment manufacturers, network security vendors, cloud computing providers and many other fields, EBay, Google, AWS, Microsoft, Oracle, Red Hat, HP, More than 150 international leaders such as Cisco are corporate members, including 7 from mainland China, with more than 46,500 individual members based on LinkedIn.

In the Cloud computing field, new threats are emerging, and traditional threats remain. At present, cloud computing security encountered difficulties and constraints, not only compliance, but also involved in security qualitative, quantitative, SLA and other aspects. There is an urgent need for the industry to work together to build a more credible cloud ecosystem that will increase the confidence of potential cloud users and senior executives. To this end, as the cloud Security leadership, CSA organized a number of community activities, and published a series of fruitful research reports.

Cloud Security Guide-the prototype of cloud safety standards

According to Zhao Food introduction, at present, almost all major meetings will cover the topic of cloud security, the relevant standard-setting work has also started. CSA has more than 10 active research working groups, has released a series of security research reports, recently published research results include "cloud Security Guide v3.0", "2013 Cloud Security 9 threat" and so on. In the absence of a widely recognized and universally compliant international cloud security standard in the industry, the cloud Security Guide strategically and has specific strategies and implementation recommendations that are undoubtedly among the most influential. The Cloud Security Guide focuses on the security needs and recommendations that are relevant to cloud computing security that can be evaluated and audited, centered around the core of risk (disorientated), from Architecture (architecture), Governance (governance) and implementation (operational) three aspects and 14 areas of cloud security are discussed in depth.

The views expressed in the "Cloud Security Guide" are followed in many respects by the

Zhao food, especially the security essentials of "three-point technology, seven-point management", which is also effective in the cloud computing environment. In the Cloud Security Guide, there are a number of recommendations for regulatory issues other than technology. In the speech of Zhao Liang, the audience will understand the latest research progress of CSA.