Cloud Security Principles

Status: Retired
Published: 17/11/2018
Security level: Official
Amended / Internally developed: False
Live on platform: 23/09/2021
Target Audience: Technical / General
Authoring body: National Cyber Security Centre (NCSC)
Grading: no grading applied
Principles
Abstract

Published by the National cyber security centre, this guidance document provides details and context on the following 14 cloud security principles.

1. Data in transit

2. Asset protection and resilience

3. Separation between users

4. Governance framework

5. Operational security

6. Personnel security

7. Secure development

8. Supply chain security

9. Secure user management

10. Identity and authentication

11. External interface protection

12. Secure service administration

13. Audit information for users

14. Secure use of the service

 

Download attachments: 

  Implementing the Cloud Security Principles - NCSC.GOV.UK.pdf

Link: https://www.ncsc.gov.uk/collection/cloud-security/implementing-the-cloud-security-principles 
Tags: encryption
Category: Security Cloud