Rec. ITU-T X.1605 (03/2020) Security requirements of public Infrastructure as a Service (IaaS) in cloud computing
Summary
History
FOREWORD
Table of Contents
1 Scope
2 References
3 Definitions
     3.1 Terms defined elsewhere
     3.2 Terms defined in this Recommendation
4 Abbreviations and acronyms
5 Conventions
6 Overview
7 Security challenges for the IaaS environment
8 Security requirements of the IaaS access layer
     8.1 Security requirements for web access
     8.2 Security requirements for API access
9 Security requirements of the IaaS service layer
     9.1 Security requirements for computing service
     9.2 Security requirements for storage service
     9.3 Security requirements for networking service
10 Security requirements of the IaaS resource layer
     10.1 Security requirements for resource abstraction and control
          10.1.1 Security requirements for virtual resource pool
               10.1.1.1 Security requirements for virtual computing resource
               10.1.1.2 Security requirements for virtual network resource
               10.1.1.3 Security requirements for virtual storage resource
          10.1.2 Security requirements for virtual resource management platform
     10.2 Security requirement for physical resource
          10.2.1 Security requirements for the physical environment
               10.2.1.1 Security requirements for physical resources
11 Security management requirements
     11.1 IdM and access control
     11.2 Security audit
     11.3 Vulnerability management
     11.4 Emergency response
     11.5 Disaster recovery
     11.6 Backup
Bibliography