Huawei and the Cloud Security Alliance (CSA) have jointly released a guide for effectively managing cloud services security.
Security has always been a major concern for enterprises considering to deploy services on the cloud. While service providers have managed to secure cloud services at an acceptable level, many customers – particularly SMEs – lack a clear and practical knowledge or understanding of best practices on how to secure their cloud services.
With this in mind, Huawei says it collaborated with the CSA Cloud Security Service Management Working Group (CSSM WG),to jointly develop the guide that applies to various cloud deployment models, from private, public and hybrid to community cloud.
The guide explain to customers how to design, deploy, and operate a secure cloud service with respect to different service models (IaaS, PaaS, and SaaS), helping them ensure the secure operation of service systems.
With a distinct separation of responsibilities, customers can clearly understand their own security responsibilities as well as those of their cloud service providers, what security assurance features should be provided to bear these responsibilities, existing gaps, and how to develop related capabilities to address such gaps.
The guidelines were revealed at the CSA APAC 2018 summit in Singapore.
The guidelines are available for download here.