雲端安全的領域與研究議題

雲端安全的領域

1.         Cloud Computing Architectural Framework

2.         Governance and Enterprise Risk Management

3.         Legal

4.         Electronic Discovery

5.         Compliance and Audit

6.         Information lifecycle management

7.         Portability and Interoperability

8.         Traditional Security, Business Continuity and Disaster Recovery

9.         Data Center operations

10.      Incident Response, Notification and Remediation

11.      Application Security

12.      Encryption and Key Management

13.      identity and Access management

14.      Storage

15.      Virtualization

16.      Cloud Forensics

產業研究的議題

1.         secure cloud resource virtualization mechanisms

2.         secure data management outsourcing (e.g. database as a service)

3.         practical privacy and integrity mechanisms for outsourcing

4.         foundations of cloud-centric threat models

5.         secure computation outsourcing

6.         remote attestation mechanisms in clouds

7.         sandboxing and VM-based enforcements

8.         new cloud-aware web service security paradigms and mechanisms

9.         cloud-centric regulatory compliance issues and mechanisms

10.      business and security risk models and clouds

11.      cost and usability models and their interaction with security in clouds

12.      scalability of security in global-size clouds

13.      trusted computing technology and clouds

14.      trust and policy management in clouds

15.      secure identity management mechanisms

16.      binary analysis of software for remote attestation and cloud protection

17.      network security (DOS, IDS etc.) mechanisms for cloud contexts

18.      security for emerging cloud programming models

19.      energy/cost/efficiency of security in clouds