Abstract: "Cloud Security Technology Reference Architecture" aims to let organizations understand the advantages and inherent risks of adopting cloud-based services, and proposes cloud migration and data protection methods for organizations to use for data collection and reporting. This technical reference architecture provides guidance for organizations that adopt cloud services, and provides cloud service organizations with cloud deployment, adaptive solutions, security architecture, DevSecOps (development, security and Operations), zero trust guidance.
Table of contents
1 Introduction
2 Purpose and scope
3 Shared service layer
3.1 Cloud service model
3.2 Introduction to FedRAMP
3.3 Security considerations under FedRAMP
4 Cloud migration
4.1 Cloud design software
4.2 Create a cloud migration strategy
4.3 Cloud migration scenario
4.4 Adopt DevSecOps concept
4.5 Centralized public cloud services
4.6 Invest in people
5 Cloud security situation management
5.1 Define CSPM
5.2 CSPM results
5.3 Adopt CSPM function
6 Conclusion
On June 23, 2022, the Secretary of the Department of Homeland Security (DHS), the Director of the Cybersecurity and Infrastructure Security Agency (CISA), and the Office of Management and Budget (Office of Management and Budget, In consultation with the Director of OMB and the Executive Director of the Federal Risk and Authorization Management Program (FedRAMP), version 2.0 of the "Cloud Security Technology Reference Architecture" was developed and released to provide organizations with cloud security posture management&