ITU-T X 1642-2016 Guidelines for the operational security of cloud computing (Study Group 17)《云计算操作安全指南(研究组17)》.pdf

1、 I n t e r n a t i o n a l T e l e c o m m u n i c a t i o n U n i o n ITU-T X.1642 TELECOMMUNICATION STANDARDIZATION SECTOR OF ITU (03/2016) SERIES X: DATA NETWORKS, OPEN SYSTEM COMMUNICATIONS AND SECURITY Cloud computing security Cloud computing security best practices and guidelines Guidelines fo

2、r the operational security of cloud computing Recommendation ITU-T X.1642 ITU-T X-SERIES RECOMMENDATIONS DATA NETWORKS, OPEN SYSTEM COMMUNICATIONS AND SECURITY PUBLIC DATA NETWORKS X.1X.199 OPEN SYSTEMS INTERCONNECTION X.200X.299 INTERWORKING BETWEEN NETWORKS X.300X.399 MESSAGE HANDLING SYSTEMS X.40

3、0X.499 DIRECTORY X.500X.599 OSI NETWORKING AND SYSTEM ASPECTS X.600X.699 OSI MANAGEMENT X.700X.799 SECURITY X.800X.849 OSI APPLICATIONS X.850X.899 OPEN DISTRIBUTED PROCESSING X.900X.999 INFORMATION AND NETWORK SECURITY General security aspects X.1000X.1029 Network security X.1030X.1049 Security mana

4、gement X.1050X.1069 Telebiometrics X.1080X.1099 SECURE APPLICATIONS AND SERVICES Multicast security X.1100X.1109 Home network security X.1110X.1119 Mobile security X.1120X.1139 Web security X.1140X.1149 Security protocols X.1150X.1159 Peer-to-peer security X.1160X.1169 Networked ID security X.1170X.

5、1179 IPTV security X.1180X.1199 CYBERSPACE SECURITY Cybersecurity X.1200X.1229 Countering spam X.1230X.1249 Identity management X.1250X.1279 SECURE APPLICATIONS AND SERVICES Emergency communications X.1300X.1309 Ubiquitous sensor network security X.1310X.1339 PKI related Recommendations X.1340X.1349

6、 CYBERSECURITY INFORMATION EXCHANGE Overview of cybersecurity X.1500X.1519 Vulnerability/state exchange X.1520X.1539 Event/incident/heuristics exchange X.1540X.1549 Exchange of policies X.1550X.1559 Heuristics and information request X.1560X.1569 Identification and discovery X.1570X.1579 Assured exc

7、hange X.1580X.1589 CLOUD COMPUTING SECURITY Overview of cloud computing security X.1600X.1601 Cloud computing security design X.1602X.1639 Cloud computing security best practices and guidelines X.1640X.1659 Cloud computing security implementation X.1660X.1679 Other cloud computing security X.1680X.1

8、699 For further details, please refer to the list of ITU-T Recommendations. Rec. ITU-T X.1642 (03/2016) i Recommendation ITU-T X.1642 Guidelines for the operational security of cloud computing Summary Recommendation ITU-T X.1642 provides generic operational security guidelines for cloud computing fr

9、om the perspective of cloud service providers (CSPs). It analyses the security requirements and metrics for the operation of cloud computing. A set of security measures and detailed security activities for the daily operation and maintenance are provided to help CSPs mitigate security risks and addr

10、ess security challenges for the operation of cloud computing. History Edition Recommendation Approval Study Group Unique ID* 1.0 ITU-T X.1642 2016-03-23 17 11.1002/1000/12616 Keywords Cloud computing, operational security, security clause of the service level agreement (SLA). * To access the Recomme

11、ndation, type the URL http:/handle.itu.int/ in the address field of your web browser, followed by the Recommendations unique ID. For example, http:/handle.itu.int/11.1002/1000/11830-en. ii Rec. ITU-T X.1642 (03/2016) FOREWORD The International Telecommunication Union (ITU) is the United Nations spec

12、ialized agency in the field of telecommunications, information and communication technologies (ICTs). The ITU Telecommunication Standardization Sector (ITU-T) is a permanent organ of ITU. ITU-T is responsible for studying technical, operating and tariff questions and issuing Recommendations on them

13、with a view to standardizing telecommunications on a worldwide basis. The World Telecommunication Standardization Assembly (WTSA), which meets every four years, establishes the topics for study by the ITU-T study groups which, in turn, produce Recommendations on these topics. The approval of ITU-T R

14、ecommendations is covered by the procedure laid down in WTSA Resolution 1. In some areas of information technology which fall within ITU-Ts purview, the necessary standards are prepared on a collaborative basis with ISO and IEC. NOTE In this Recommendation, the expression “Administration“ is used fo

15、r conciseness to indicate both a telecommunication administration and a recognized operating agency. Compliance with this Recommendation is voluntary. However, the Recommendation may contain certain mandatory provisions (to ensure, e.g., interoperability or applicability) and compliance with the Rec

16、ommendation is achieved when all of these mandatory provisions are met. The words “shall“ or some other obligatory language such as “must“ and the negative equivalents are used to express requirements. The use of such words does not suggest that compliance with the Recommendation is required of any

17、party. INTELLECTUAL PROPERTY RIGHTSITU draws attention to the possibility that the practice or implementation of this Recommendation may involve the use of a claimed Intellectual Property Right. ITU takes no position concerning the evidence, validity or applicability of claimed Intellectual Property

18、 Rights, whether asserted by ITU members or others outside of the Recommendation development process. As of the date of approval of this Recommendation, ITU had not received notice of intellectual property, protected by patents, which may be required to implement this Recommendation. However, implem

19、enters are cautioned that this may not represent the latest information and are therefore strongly urged to consult the TSB patent database at http:/www.itu.int/ITU-T/ipr/. ITU 2016 All rights reserved. No part of this publication may be reproduced, by any means whatsoever, without the prior written

20、 permission of ITU. Rec. ITU-T X.1642 (03/2016) iii Table of Contents Page 1 Scope . 1 2 References . 1 3 Definitions 1 3.1 Terms defined elsewhere 1 3.2 Terms defined in this Recommendation . 2 4 Abbreviations and acronyms 2 5 Conventions 3 6 Overview . 3 7 Requirements of the security clause of th

21、e service level agreement 4 7.1 Security responsibility between CSPs and CSCs . 4 7.2 Requirements of the security clause of SLA 5 8 Guidelines of daily operational security . 7 8.1 Identity management and access control 8 8.2 Data encryption and key management . 9 8.3 System security monitoring 10

22、8.4 Disaster recovery 11 8.5 Security configuration management . 11 8.6 Security event processing . 13 8.7 Patch upgrade . 14 8.8 Securing configuration management 16 8.9 Emergency response plans . 17 8.10 Backup 18 8.11 Internal security audit . 20 Bibliography. 22 Rec. ITU-T X.1642 (03/2016) 1 Rec

23、ommendation ITU-T X.1642 Guidelines for the operational security of cloud computing 1 Scope This Recommendation clarifies the security responsibilities between cloud service providers (CSPs) and cloud service customers (CSCs), and analyses the requirements and categories of security metrics of opera

24、tional security for cloud computing. It defines sets of detailed security measures and security activities for the daily operation and maintenance for cloud computing services and infrastructure from the perspective of CSPs, to fulfil the requirements of operational security for cloud computing. Thi

25、s Recommendation will be helpful for CSPs to reduce operational risks. The target audiences of this Recommendation are CSPs, such as traditional telecommunication operators and Internet service providers (ISPs). 2 References None. 3 Definitions 3.1 Terms defined elsewhere This Recommendation uses th

26、e following terms defined elsewhere: 3.1.1 cloud computing b-ITU-T Y.3500: Paradigm for enabling network access to a scalable and elastic pool of shareable physical or virtual resources with self-service provisioning and administration on-demand. 3.1.2 cloud service b-ITU-T Y.3500: One or more capab

27、ilities offered via cloud computing invoked using a defined interface. 3.1.3 cloud service customer b-ITU-T Y.3500: Party which is in a business relationship for the purpose of using cloud services. 3.1.4 cloud service partner b-ITU-T Y.3500: Party which is engaged in support of, or auxiliary to, ac

28、tivities of either the cloud service provider or the cloud service customer, or both. 3.1.5 cloud service provider b-ITU-T Y.3500: Party which makes cloud services available. 3.1.6 infrastructure as a service (IaaS) b-ITU-T Y.3500: Cloud service category in which the cloud capabilities type provided

29、 to the cloud service customer is an infrastructure capabilities type. 3.1.7 multi-tenancy b-ITU-T Y.3500: Allocation of physical or virtual resources such that multiple tenants and their computations and data are isolated from and inaccessible to one another. 3.1.8 network as a service (NaaS) b-ITU

30、-T Y.3500: Cloud service category in which the capability provided to the cloud service customer is transport connectivity and related network capabilities. 3.1.9 party b-ISO 27729: Natural person or legal person, whether or not incorporated, or a group of either. 3.1.10 platform as a service (PaaS)

31、 b-ITU-T Y.3500: Cloud service category in which the cloud capabilities type provided to the service customer is a platform capabilities type. 2 Rec. ITU-T X.1642 (03/2016) 3.1.11 security challenge b-ITU-T X.1601: A security “difficulty“ other than a direct security threat arising from the nature a

32、nd operating environment of cloud services, including “indirect“ threats. 3.1.12 security domain b-ITU-T X.810: A set of elements, a security policy, a security authority and a set of security-relevant activities in which the set of elements are subject to the security policy for the specified activ

33、ities, and the security policy is administered by the security authority for the security domain. 3.1.13 security incident b-ITU-T E.409: A security incident is any adverse event whereby some aspect of security could be threatened. 3.1.14 service level agreement (SLA) b-ISO/IEC 20000-1: Documented a

34、greement between the service provider and customer that identifies services and service targets. 3.1.15 software as a service (SaaS) b-ITU-T Y.3500: Cloud service category in which the cloud capabilities type provided to the cloud service customer is an application capabilities type. 3.1.16 tenant b

35、-ITU-T Y.3500: One or more cloud service users sharing access to a set of physical and virtual resources. 3.1.17 threat b-ISO/IEC 27000: Potential cause of an unwanted incident, which may result in harm to a system or organization. 3.1.18 vulnerability b-NIST-SP-800-30: Weakness in an information sy

36、stem, system security procedures, internal controls, or implementation that could be exploited by a threat source. 3.2 Terms defined in this Recommendation None. 4 Abbreviations and acronyms This Recommendation uses the following abbreviations and acronyms: ACL Access Control List API Application Pr

37、ogramming Interface BIA Business Impact Analysis CCTV Closed Circuit Television CPU Central Processing Unit CSC Cloud Service Customer CSN Cloud Service Partner CSP Cloud Service Provider DB Database DDoS Distributed Denial of Service DLP Data Leakage Prevention DoS Denial of Service IAM Identity an

38、d Access Management IaaS Infrastructure as a Service ICT Information and Communication Technology IdM Identity Management Rec. ITU-T X.1642 (03/2016) 3 IDS Intrusion Detection System IP Internet Protocol IPS Intrusion Prevention System ISP Internet Service Provider IT Information Technology JIT Just

39、 In Time LDAP Lightweight Directory Access Protocol NaaS Network as a Service OS Operating System PaaS Platform as a Service RPO Recovery Point Objective RTO Recovery Time Objectives SaaS Software as a Service SLA Service Level Agreement SMS Short Message Service SSO Single Sign-On VDC Virtual Data

40、Centre VM Virtual Machine 5 Conventions None. 6 Overview With the rapid expansion of the cloud computing market and the establishment of industry chains, security issues continue to be a major and important topic that cannot be ignored. Cloud computing systems are facing more challenges than traditi

41、onal information technology (IT) systems because they are more complicated, and huge amounts of users private data have been stored in the cloud. Both security and privacy protection are the most important factors when customers evaluate the use of cloud computing services. More and more cloud servi

42、ces will be supplied, and methods to guarantee the reliability of these cloud services have become more urgent. It is therefore necessary to thoroughly investigate the operational security of cloud computing to provide guidelines for cloud service providers (CSPs). The guidelines can help CSPs reduc

43、e the security risk from improper operation, unreasonable business design, etc., and improve the overall security level of operation for cloud computing services. From the perspective of CSPs, the main security challenges of operational security are described below: 1) Challenges to the maintenance

44、of cloud computing infrastructure: When cloud computing provides the users with IT infrastructure, a platform or software as a service, the stability, reliability and safe delivery of cloud services are a prerequisite to carry out business. In order to guarantee that customer service is not interrup

45、ted, the infrastructure of the cloud system should be ensured for a reliable and stable operation, and the necessary precautions should be adopted to protect the safety and privacy of users information. Even in the event of a small 4 Rec. ITU-T X.1642 (03/2016) failure, many CSCs may experience diff

46、iculties such as business interruption or data loss. CSPs should seriously consider how to quickly locate the faults and automatically switch to the backup system seamlessly to protect the availability of customers service. 2) Challenges to the management mode of cloud computing: The characteristics

47、 of cloud computing, such as cross-regional services, huge computing power, separation of data management and ownership, distinguishes it from the traditional IT services. These challenges require effective management and co-operation between branch nodes to solve security problems by CSPs. For CSPs

48、, some necessary technical measures, such as security configuration management, etc., a reasonable distribution of management authority, and a set of effective management rules and processes will be needed to prevent the leakage of user data. For example, CSPs should take measures to prevent the int

49、ernal administrators from overstepping their authority so as to prevent users from abusing the cloud computing resources. Overall, for the complete security of cloud applications operated on the cloud infrastructure, CSPs should adopt different technological methods and management mechanisms not only to maintain the security, stability and availability of the cloud infrastructure, but also to protect the business continuity and the user data of the cloud services operated. 7 Requirements of the