Improvement framework of Korean certification system for cloud service focus on security

Abstract

For the purpose of effectively utilizing & managing ICT resources and reducing costs, various companies are using cloud service as their core technological strategy. In spite of such effort, cloud service security, information protection and performance are being considered as areas that need to be considered when implementing cloud service. In Korea, cloud service certification system is being used to ensure user reliability for cloud service and high-quality cloud services are being certified by considering their quality, security and ongoing service capability. Since current certification system is being utilized focusing on management system, however, it lacks the consideration on technical aspects. Accordingly, this study aims to examine information assurance systems such as ISO 20071 and ISMS to propose a framework for enhancing the cloud service certification system of Korea by focusing on security. The findings of this study are expected to help in increasing the use of cloud service by improving user reliability through the increased utilization of cloud service certification system of Korea.