2. Cloud Security Allianceのご紹介
• クラウドセキュリティのグローバルな非営利組織
• Individual Members(ソーシャルメディアLinkedInの
「Cloud Security Alliance」グループ登録者):5万人以上
• Corporate Members: 140
• Affiliate Members: 24(ASPIC、IPA含む)
• Chapters worldwide:60以上(日本含む)
The Cloud Security Alliance (CSA) is a not-for-profit organization with a
mission to promote the use of best practices for providing security assurance
within Cloud Computing, and to provide education on the uses of Cloud
Computing to help secure all other forms of computing. The Cloud Security
Alliance is led by a broad coalition of industry practitioners, corporations,
associations and other key stakeholders.
(https://cloudsecurityalliance.org/)
(c) 2013 Cloud Security Alliance
2
6. Cloud Security Allianceのご紹介
• 主要なワーキンググループ/リサーチイニシアティブ
•
•
•
•
•
•
•
•
•
•
•
•
•
Security Guidance for Critical Areas of
Focus in Cloud Computing
Cloud Vulnerabilities Working Group
Incident Management and Forensics
CSA Legal Information Center
Innovation Initiative
Open Certification Framework
Mobile Working Group
Big Data Working Group
Privacy Level Agreement Working Group
Consensus Assessments Initiative
Cloud Controls Matrix (CCM)
CloudTrust Protocol
Cloud Data Governance
•
•
•
•
•
•
•
•
•
•
Enterprise Architecture Working Group
Security as a Service
Telecom Working Group
Health Information Management
Working Group
Top Threats to Cloud Computing
CloudAudit
CloudCERT
Cloud Metrics
Solution Provider SME Advisory Council
(Corporate Members)
Solution Provider Advisory Council
(Corporate Members)
(c) 2013 Cloud Security Alliance
6
7. 健康医療情報管理ワーキンググループのご紹介
• CSA Health Information Management Working Group
(https://cloudsecurityalliance.org/research/him/)
• 代表幹事: Vincent Campitelli, McKesson Corp.
Chris Ledoux, athenahealth, Inc.
• 活動領域:
• Provide direct influence on how health information service
providers deliver secure cloud solutions (services, transport,
applications and storage) to their clients, and foster cloud
awareness within all aspects of healthcare and related industries.
• The efforts are jointly executed by CSA Global, health
information cloud communities (i.e. focus groups, associations,
vendors, providers, research institutes, forums, and academia),
Solution Providers and relevant working group responsible for
authoring CSA’s Guidance V.3.
(c) 2013 Cloud Security Alliance
7