当前位置:首页 > 报告详情

你的数据现在属于加拿大了吗?(以及其他关乎云主权存亡的问题).pdf

上传人: 竿*** 编号:982139 2025-11-29 22页 1.33MB

1、#SECTORCA BlackHatEventsIs Your Data Canadian Yet?And Other Existential Cloud Sovereignty Questions#SECTORCA BlackHatEventsQuick IntroductionsJames ArlenKevin FoxJames Arlen is Aiven.ios CISO bringing a mix of security and engineering background to DBaaS(database as a service).Over the past twenty p

2、lus years,James has been delivering information security solutions to Fortune 500,TSE 100,and major public-sector organizations.James is best described as:“Infosec geek,hacker,social activist,author,speaker,and parent.”His areas of interest include organizational change,social engineering,blinky lig

3、hts and shiny things.Kevin Fox is a seasoned cybersecurity professional with over twenty years of experience spanning cloud infrastructure,automation,development,security,organizational governance and risk.As Aivens Customer Cybersecurity Advocate,he helps organizations navigate evolving security ch

4、allenges while aligning technical realities with business goals.Kevin brings a unique blend of hands-on expertise and strategic insight,bridging the gaps between leadership objectives,security priorities,and compliance demands.(who even are these guys?)#SECTORCA BlackHatEventsDefinitionsData Residen

5、cyData SovereigntyWhere the data is physically located.Data is subject to the laws and regulations of its origin.(because,what is a presentation without definitions)#SECTORCA BlackHatEventsDefinitionsData ResidencyData Sovereignty(strictly speaking not a definition,but here we are)#SECTORCA BlackHat

6、EventsSpectrum of Sovereignty-StrictExtremely strict localization laws-data must reside within countryGovernment have broad authority to access dataCross-border restrictions-state approval or whitelisted destinations and/or security reviewsData is viewed similar to other natural resources(and protec

word格式文档无特别注明外均可编辑修改,预览文件经过压缩,下载原文更清晰!
三个皮匠报告文库所有资源均是客户上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作商用。
根据报告的内容,全文主要探讨了数据主权和数据驻留的问题,以下为关键点: 1. **数据主权定义**:数据主权涉及数据物理位置及其受所在国家法律和法规的约束。 2. **主权光谱**:从严格到宽松,数据主权分为三个层次,涉及数据定位、政府访问权限和跨境限制。 3. **CLOUD Act**:美国法律,允许美国政府在必要时获取存储在国外的数据。 4. **Microsoft v. United States**:微软与美国政府关于数据跨境访问权的诉讼,最终以CLOUD Act的通过而告终。 5. **欧盟的应对**:欧盟通过主权云服务来应对数据主权问题。 6. **OSI主权层**:从物理层到应用层,分析数据主权在不同技术层面的体现。 7. **供应商和客户的职责**:供应商需了解法律边界和客户需求,客户需了解数据流动和供应链。 8. **采购清单**:列出客户在选择云服务时应考虑的关键问题。 9. **加拿大情况**:加拿大依赖与美国的关系,并倾向于使用私有云服务。
"数据主权,你了解多少?" "跨国数据流动,法律如何界定?" "云服务,如何确保数据安全?"
客服
商务合作
小程序
服务号
折叠