Page 376 - Cloud computing: From paradigm to operation

P. 376

1 Framework and requirements for cloud computing

[ISO/IEC 20547-4] Information technology – Big data reference architecture – Part 4: Security
and privacy fabric
This International Standard (under development) specifies the underlying
Security and Privacy fabric that applies to all aspects of the big data reference
architecture including the big data roles, activities, and functional
components.
[ISO/IEC 20547-5] Information technology – Big data reference architecture – Part 5: Standards
roadmap
This technical report provides big data relevant standards, both in existence
and under development, along with priorities for future big data standards
development based on gap analysis.
[ISO/IEC 19944] Information technology – Cloud computing – Cloud services and devices:
data flow, data categories and data use

Establish common and functional ways of understanding and describing the
breadth of the cloud service ecosystem.
Enumerate and define the types of connections that can exist between cloud
services and customers where their devices are mobile.
Provide foundational concepts necessary to enable others to provide
guidance concerning data locality, mobile ecosystem issues, and identity
issues.
Identify the types of data that flow across the customers and cloud services
ecosystem and that can help cloud customers'
URL: http://www.iso.org/iso/home/store/catalogue_tc/
catalogue_detail.htm?csnumber=66674
[ISO/IEC 27000] Information technology – Security techniques – Information security manage
systems – Overview and vocabulary
This International Standard provides the overview of information security
management systems, and terms and definitions commonly used in the ISMS
family of standards. This International Standard is applicable to all types and
sizes of organization (e.g., commercial enterprises, government agencies,
not-for-profit organizations).
URL: http://www.iso.org/iso/catalogue_detail?csnumber=63411

[ISO/IEC 27001] Information technology – Security techniques – Information security manage
systems – Requirements
This International Standard specifies the requirements for establishing,
implementing, maintaining and continually improving an information
security management system within the context of the organization. This
International Standard also includes requirements for the assessment and
treatment of information security risks tailored to the needs of the
organization. The requirements set out in this International Standard are
generic and are intended to be applicable to all organizations, regardless of
type, size or nature.
URL: https://www.iso.org/obp/ui/#iso:std:iso-iec:27001:ed-2:v1:en

[ISO/IEC 27002] Information technology – Security techniques – Code of practice for
information security controls
This International Standard gives guidelines for organizational information
security standards and information security management practices including
the selection, implementation and management of controls taking into
consideration the organization's information security risk environment(s).
URL: http://www.iso.org/iso/catalogue_detail?csnumber=54533

368

371 372 373 374 375 376 377 378 379 380 381