최소 단어 이상 선택하여야 합니다.
최대 10 단어까지만 선택 가능합니다.
다음과 같은 기능을 한번의 로그인으로 사용 할 수 있습니다.
NTIS 바로가기情報保護學會論文誌 = Journal of the Korea Institute of Information Security and Cryptology, v.34 no.1, 2024년, pp.83 - 102
김해나 (고려대학교) , 김예준 (고려대학교) , 김승주 (고려대학교)
Recently, as the use of the cloud increases year by year and remote work within the enterprise has become one of the new types of work, the security of the cloud-based remote work environment has become important. The introduction of zero trust is required due to the limitations of the existing peri...
Satya Nadella, "Microsoft Build 2020: CEO Satya Nadella's opening remarks", https://www.youtube.com/watch?vS_wNRx7f7rU, May. 2020.
Gartner, "Gartner Forecasts Worldwide?Public Cloud End-User Spending to Reach Nearly $600 Billion in 2023", https://www.gartner.com/en/newsroom/press-releases/2023-04-19-gartner-forecasts-worldwide-public-cloud-end-user-spending-to-reach-nearly-600-billion-in-2023, Apr. 2023.
Trend Micro, Trend Micro Research,?"A Constant State of Flux: Trend?Micro 2020 Annual Cybersecurity?Report", Trend Micro Research, Feb. 2021.
Microsoft, "DEV-0537 criminal actor?targeting organizations for data exfiltration and destruction By Microsoft Incident Response", https://www.microsoft.com/en-us/security/blog/2022/03/22/dev-0537-criminal-actor-targeting-organizations-for-data-exfiltration-and-destruction, Sep 2023.
John Kindervag, "No More Chewy?Centers: Introducing The Zero Trust?Model Of Information Security",?Forrester, Sep. 2010.
National Institute of Standards and?Technology, "NIST SP 800-207 Zero?Trust Architecture", Aug. 2020.
Defense Information Systems Agency?(DISA) And National Security Agency?(NSA) Zero Trust Engineering Team,?"Department Of Defense Zero Trust?Reference Architecture, Version 2.0", Jul. 2022.
Forrester, "The I&O Pro's Guide to?Enterprise Open Source Cloud?Adoption, Q1 2018", Mar. 2018.
Ward, Rory, and Betsy Beyer,?"Beyondcorp - A New Approach To?Enterprise Secuirty", Google, Dec. 2014.
Gartner, "The Gartner IT Security?Approach for the Digital Age",https://www.gartner.com/smarterwithgartner/the-gartner-it-security-approach-for-the-digital-age, Sep. 2023.
Bryan Zimmer, "LISA: A Practical?Zero Trust Architecture", Usenix, Jan. 2018.
Theo Dimitrakos, Tezcan Dilshener, Alexander Kravtsov, Antonio La Marra, Fabio Martinelli, Athanasios Rizos, Alessandro Rosetti and Andrea Saracino, "Trust Aware Continuous Authorization for Zero Trust in Consumer Internet of Things," 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom), pp. 1801-1812, Dec. 2020.
Mandal, S., Khan, D.A. and Jain, S., "Cloud-Based Zero Trust Access Control Policy: An Approach to Support Work-From-Home Driven by COVID-19 Pandemic", New Gener. Computing. vol. 39, pp. 599-622, 2021.
P. Garcia-Teodoro, J. Camacho, G. Macia-Fernandez, J.A. Gomez-Hernandez and V.J. Lopez-Marin, "Anovel?zero-trust network access control?scheme based on the security profile of devices and users", Computer Networks, vol. 212, article. 109068,May. 2022.
Nisha T N, Dhanya Pramod and Ravi?Singh, "Zero trust security model: Defining new boundaries to organizational network", Proceedings of the 2023 Fifteenth International?Conference on Contemporary Computing, pp. 603-609, Aug. 2023.
ACT-IAC, "Zero Trust Report - Lessons Learned From Vendor And Partner Research", May. 2021.
Alper Kerman, Oliver Borche, Oliver Borche, Eileen Division and Allen Tan,?"IMPLEMENTING A ZERO TRUST?ARCHITECTURE", NCCoE, Oct. 2020.
DISA and NSA, "Department of?Defense (DOD) Zero Trust Reference?Architecture Version 1.0", Feb. 2021.
NSA, "Embracing A Zero Trust?Security Model", Feb. 2021.
CISA, "Zero Trust Maturity Model", Apr. 2023.
National Institute of Standards and?Technology, "NIST SP 800-53 Security?and Privacy Controlsfor Information?Systems and Organizations", Sep. 2020.
Microsoft, "Zero Trust security", https://learn.microsoft.com/en-us/azure/security/fundamentals/zero-trust, Jun. 2023.
Microsoft, "Evolving Zero Trust - How?Real-World Deployments And Attacks?Are Shaping The Future Of Zero Trust?Strategies", Sep. 2021.
AWS, "Understanding Zero Trust principles", https://docs.aws.amazon.com/us_en/prescriptive-guidance/latest/strategy-zero-trust-architecture/zero-trust-principles.html, May. 2023.
Google, "Google Cloud Architecture?Framework", https://cloud.google.com/architecture/framework, Google Cloud, Jun. 2023.
Victor Escobedo, Betsy Beyer, Max?Saltonstall and Filip Zyzniewski,?Google, "Beyondcorp 5 - The User?Experience", Sep. 2017.
R. Khan, K. McLaughlin, D. Laverty?and S. Sezer, "STRIDE-based threat?modeling for cyber-physical systems",?2017 IEEE PES Innovative Smart Grid?Technologies Conference Europe?(ISGT-Europe), pp. 1-6, Sep. 2017.
M. Cagnazzo, M. Hertlein, T. Holz?and N. Pohlmann, "Threat modeling?for mobile health systems", 2018 IEEE?Wireless Communications and Networking Conference Workshops (WCNCW), pp. 314-319, Apr. 2018.
Zaina Abuabed, Ahmad Alsadeh and Adel Taweel, "STRIDE threat model-based framework for assessing the vulnerabilities of modern vehicles",Computers & Security, Computers&Security, vol. 133, article. 103391, Oct. 2023.
Microsoft, "Microsoft Threat Modeling Tool", https://learn.microsoft.com/en-us/azure/security/develop/threat-modeling-tool, Aug. 2022.
OpenStack, "OpenStack documentation-design", https://docs.openstack.org/arch-design/design.html, May. 2023.
Sean Metcalf and Mark Morowczynski,"Attacking and Defending the Microsoft Cloud (Office 365 &Azure AD)", Black Hat USA, Aug. 2019.
MITRE CVE, "CVE-2022-47951", https://cve.mitre.org/cgi-bin/cvename.cgi?nameCVE-2022-47951, Feb. 2023.
The MITRE Corporation, https://attack.mitre.org/techniques/T1529, May. 2023.
OpenStack, "OpenStack documentation-security checklist", https://docs.OpenStack.org/security-guide/checklist.html, Jan. 2023. May. 2023.
MITRE CVE, "CVE-2023-40585", https://cve.mitre.org/cgi-bin/cvename.cgi?nameCVE-2023-40585, May. 2023.
MITRE CVE, "CVE-2023-3637", https://cve.mitre.org/cgi-bin/cvename.cgi?nameCVE-2023-3637, Jul. 2023.
MITRE CVE, "CVE-2023-2088", https://cve.mitre.org/cgi-bin/cvename.cgi?nameCVE-2023-2088, Jul. 2023.
MITRE CVE, "CVE-2023-1636", https://cve.mitre.org/cgi-bin/cvename.cgi?nameCVE-2023-1636, Apr. 2023.
MITRE CVE, "CVE-2023-1633", https://cve.mitre.org/cgi-bin/cvename.cgi?nameCVE-2023-1633, Mar. 2023.
MITRE CVE, "CVE-2023-1625", https://cve.mitre.org/cgi-bin/cvename.cgi?nameCVE-2023-1625, Mar. 2023.
Synergy Research Group, "Huge Cloud?Market Still Growing at 34% Per?Year; Amazon, Microsoft & Google?Now Account for 65% of the Total", https://www.srgresearch.com/articles/huge-cloud-market-is-still-growing-at-34-per-year-amazon-microsoft-and-google-now-account-for-65-of-all-cloud-revenues, Apr. 2023.
Microsoft, "Azure documentation", https://learn.microsoft.com/en-us/azure/?productpopular, Jun. 2023.
AWS, "Welcome to AWS Documentation",?https://docs.aws.amazon.com, Jun. 2023.
Google Cloud, "Google Cloud Documentation", https://cloud.google.com/docs?hlus, Jun. 2023.
IBM Security, Cost of a Data Breach Report 2021, Aug 2021.
Menlo Security, "The Critical Role of?SSL Decryption & Inspection in Web Security", https://www.menlosecurity.com/blog/the-critical-role-of-ssl-inspection-to-avoid-secure-malware-delivery,Apr. 2020.
Paloalto Networks, Unit 42 Cloud Threat Report, Volume 6, Apr. 2022.
MITRE, "Andariel", https://attack.mitre.org/groups/G0138/, Dec. 2023.
Verizon, "Data Breach Investigations Report", Jun. 2022.
AhnLab Security Emergency Response Center (ASEC), "Threat Trend Report on TeamTNT Group", AhnLab, Jul. 2021.
*원문 PDF 파일 및 링크정보가 존재하지 않을 경우 KISTI DDS 시스템에서 제공하는 원문복사서비스를 사용할 수 있습니다.
Free Access. 출판사/학술단체 등이 허락한 무료 공개 사이트를 통해 자유로운 이용이 가능한 논문
※ AI-Helper는 부적절한 답변을 할 수 있습니다.