云计算服务持续监管研究

Research on continuous monitoring of cloud computing service

云计算环境的复杂性和动态性,难以及时掌握云计算服务安全运行状态、评估云计算服务风险。为确保云计算服务的安全能力持续符合国家相关标准要求,对云计算服务持续监管相关内容进行了研究,定义了云服务商、客户和持续监管方角色,明确各角色的监管责任、评估指标体系以及接口规范,确保政府部门、重点行业客户稳定且安全地使用云计算服务。

The complexity and dynamism of cloud computing environment hardly lead to timely awareness of cloud computing service＇s operating state and assessment of cloud computing service risk. In order to ensure that the security of cloud service abidingly conforms to relevant national standard, continuous monitoring of cloud computing service was researched, and the role of cloud service provider was defined, customer, and continuous monitoring, described their supervising responsibility, and assessed index system and interface specification, thus guaranteeing stable and secure employment of cloud computing service by government department and key industries.