The standards that the Joint Laboratory can help to develop in the process of realizing the sensing cloud platform define the capability requirements of the security situational awareness platform for cloud computing.

This standard is the first domestic cloud computing-oriented security situational awareness platform standard, aimed at standardizing the construction of situational awareness system in the cloud computing environment, to help enterprises master the cloud computing environment situation, improve enterprise network security protection, security operations and other aspects of the ability. The standard specifies the capability requirements for cloud computing-oriented security situational awareness platform, including three parts: first, the overall functional framework of the platform; second, the principles of platform construction; and third, the capability requirements of each component of the platform.

The standard points out that the cloud-oriented security situational awareness platform is mainly composed of five parts: data collection layer, data storage and calculation layer, data intelligent analysis layer, security application layer and threat intelligence. On this basis, this standard puts forward capability requirements for each of the five components.

For example, in the data collection layer, it is required to meet the standards in terms of data sources, data collection capabilities, data preprocessing, etc.; in the data storage and computation layer, it puts forward requirements for data storage and data computation frameworks; in the data intelligence analysis layer, it is required to establish a variety of data analysis engines, and puts forward requirements for the capabilities of correlation analysis, threat detection, big data search, and behavioral analysis.

Impact of the standard

It can be predicted that, as one of the authoritative standards for the trust system in the domestic cloud computing field, the release of this standard will have a far-reaching impact on the development of the domestic cloud situational awareness market:

On the one hand, it will help enterprises to effectively identify high-quality cloud situational awareness providers, provide authoritative guidance on enterprise security construction and operation, and enhance the confidence of enterprise users in cloud situational awareness services.


On the one hand, it helps enterprises to effectively identify quality cloud situational awareness service providers, provides authoritative guidance for enterprise security construction and operation, and enhances the confidence of enterprise users in cloud situational awareness products; on the other hand, it can standardize the functional forms of cloud situational awareness products, and promotes benign development of cloud situational awareness market. It is believed that the release of this standard will attract more enterprises to continue to explore in the field of cloud computing security situational awareness, and become a powerful engine to promote the realization of cloud security.

China Academy of Information and Communication Research experts said that in addition to continuous improvement and regular revision of this standard, the second half of 2019 will also be based on this standard to launch the first batch of cloud situational awareness platform assessment test, while continuing to enrich the series of security solutions for cloud computing standards, to start the preparation of standards such as security operations, and strive to develop a more professional, more detailed, more credible and more reliable cloud computing security standards system. At the same time, we will continue to enrich the series of standards for cloud computing security solutions and start the preparation of standards for security operations, and strive to move towards the goal of a more professional, detailed and credible cloud computing security standards system.

Refer to Baidu Encyclopedia-Network Awareness Platform for the above content