Cloud 101
Circle
Events
Blog

Download Publication

Cloud OS Security Specification v2.0
Cloud OS Security Specification v2.0

Cloud OS Security Specification v2.0

Release Date: 10/14/2020

Currently, most of the standards related to cloud computing security focus on information security management systems (ISMS), and corresponding certifications only concentrate on cloud services rather than specific cloud components. There is a lack of internationally recognized technical security specifications and certifications for cloud components such as the cloud operating system (OS). CSA believes the guidance provided in this paper will be useful to help regulate security requirements for the cloud OS to prevent security threats and improve security capabilities of cloud OS products.

CSA’s Cloud Component Specifications Working Group first published the Cloud OS Security Specification v1 in July 2019. Some of the key changes and updates made in this revised version are:

  • Adjusted document structure to be more in line with logical architecture. Corresponding contents in version 1 are also moved / combined / removed according to the structure adjustment.

  • New requirements added in view of cloud security technology developments, including micro segmentation, hardware-based encryption, VM High availability, backup & recovery capability, key management service, cloud bastion host.

  • Several requirements are improved and revised to be more precise and instructive, such as the processing / saving of sensitive information, identity management and log functions.

Sponsor

Download this Resource

Prefer to access this resource without an account? Download it now.

Acknowledgements

Srinivas Tatipamula
Srinivas Tatipamula
Principal Security Advisor

Srinivas Tatipamula

Principal Security Advisor

C-CISO|CISSP|CISA|AWS CSS|AWS CSA|CDPSE|CISM|CGEIT|CRISC|ISO 27000LA|CCSK|ITIL-F|PMP|Bachelor of Economics (Hons)|Bachelor of Law| MS in Digital Forensics

Overall 30 plus years in IT and over 18 years in Cyber Security

Publications:

1. Cloud Security Alliance Internet of Things (IoT) Working Group IoT Security Controls Guide Version Published March 2019

2. CSA IoT Controls Matrix March 2019

3. ...

Read more

Michael Roza
Michael Roza
Risk, Audit, Control and Compliance Professional

Michael Roza

Risk, Audit, Control and Compliance Professional

Since 2012 Michael has contributed to over 85 CSA projects completed by CSA's Internet of Things, Zero Trust/Software-Defined Perimeter, Top Threats, Cloud Control Matrix, Containers/Microservices, DevSecOps, and other working groups. He has also served as co-chair of CSA's Enterprise Architecture, Top Threats, and Security-as-a-Service working groups while also serving as the Standards Liaison Officer for IoT, ICS, EA, SECaaS, and Cloud Key M...

Read more

Ekta Mishra
Ekta Mishra
Membership Director & Country Manager (India), CSA APAC

Ekta Mishra

Membership Director & Country Manager (India), CSA APAC

This person does not have a biography listed with CSA.

Haojie Zhuang Headshot Missing
Haojie Zhuang

Haojie Zhuang

This person does not have a biography listed with CSA.

Srinivas Tatipamula
Srinivas Tatipamula
Principal Security Advisor

Srinivas Tatipamula

Principal Security Advisor

C-CISO|CISSP|CISA|AWS CSS|AWS CSA|CDPSE|CISM|CGEIT|CRISC|ISO 27000LA|CCSK|ITIL-F|PMP|Bachelor of Economics (Hons)|Bachelor of Law| MS in Digital Forensics

Overall 30 plus years in IT and over 18 years in Cyber Security

Publications:

1. Cloud Security Alliance Internet of Things (IoT) Working Group IoT Security Controls Guide Version Published March 2019

2. CSA IoT Controls Matrix March 2019

3. ...

Read more

Xiaoyu Ge
Xiaoyu Ge
Senior Security Standards Manager of Huawei IT

Xiaoyu Ge

Senior Security Standards Manager of Huawei IT

Xiaoyu Ge is the Senior Security Standards Manager of Huawei IT Product Line which include cloud computing, big data, storage, and server products and services. He is also active as security expert in SDOs, He is the ISO/IEC JTC1 SC27 WG expert of China Nation Body, he is the rapporteur of several SC27 project such as “Requirements for establishing roots of trust for virtualized environment”. He participated in CSA several years ago, he is ...

Read more

Dez Blanchfield Headshot Missing
Dez Blanchfield

Dez Blanchfield

This person does not have a biography listed with CSA.

Dez Blanchfield Headshot Missing
Dez Blanchfield

Dez Blanchfield

This person does not have a biography listed with CSA.

Robert Bolton Headshot Missing
Robert Bolton

Robert Bolton

This person does not have a biography listed with CSA.

Matt Kaufman Headshot Missing
Matt Kaufman

Matt Kaufman

This person does not have a biography listed with CSA.

Humayun Khan Headshot Missing
Humayun Khan

Humayun Khan

This person does not have a biography listed with CSA.

Alan Leffingwell Headshot Missing
Alan Leffingwell

Alan Leffingwell

This person does not have a biography listed with CSA.

Edgar Pimenta
Edgar Pimenta
VP of Information Security

Edgar Pimenta

VP of Information Security

Edgar Pimenta is the VP for Information Security at Talkdesk (a Cloud Contact Center) and is responsible for the governance, risk and compliance of information security at Talkdesk. He manages the team that deals with policies, the security education program, the security risk management processes, and data protection among others.

Read more

K.S Reddy Headshot Missing
K.S Reddy

K.S Reddy

This person does not have a biography listed with CSA.

Justin Stoner Headshot Missing
Justin Stoner

Justin Stoner

This person does not have a biography listed with CSA.

Cedric Thibault Headshot Missing
Cedric Thibault

Cedric Thibault

This person does not have a biography listed with CSA.

Yu Zhang Headshot Missing
Yu Zhang

Yu Zhang

This person does not have a biography listed with CSA.

Shobharani Jagathpa Headshot Missing
Shobharani Jagathpa

Shobharani Jagathpa

This person does not have a biography listed with CSA.

Are you a research volunteer? Request to have your profile displayed on the website here.

Interested in helping develop research with CSA?