Security Center

Samsung Cloud Platform provides essential security information for ensuring cloud security.

To ensure security of our customers, Samsung Cloud Platform carries out systematic security control activities in accordance with various domestic/international security standards and principles. We also continuously renew security certificates for objective validation of the service reliability. In addition, we prevent human error in security by enabling automated notification for security misconfiguration vulnerabilities. And to minimize the risk of breaches caused by human error, we require internal implementation of security protocols such as authentication, network segmentation and the principle of least privilege. With automated security assessment tools, we are dedicated to provide a secure and simplified cloud environment. Find out the core principles and guidelines related to cloud security at the SCP Security Center for secure use of cloud services.

Cloud Shared Responsibility Model

The main participants of the cloud environment are Cloud Service Providers (CSP) and Cloud Service Customers (CSC). They have separate security roles and responsibilities only for their respective areas. The shared responsibility model constitutes a core principle of cloud security by clarifying roles and responsibilities for the cloud service providers and the customers to help them understand their respective responsibilities.

Roles and responsibilities of CSP and CSC Roles and responsibilities of CSP and CSC

In a shared responsibility model, cloud security is a joint effort between CSP and CSC in minimizing potential risks and maintaining a secure environment for cloud services.

Cloud Service Provider

  • CSP is responsible for physical security of infrastructure such as, HW, SW, etc., commonly used by the CSCs.
  • CSP ensures the reliability and security of cloud services, by providing sufficient resources and maintenance as appropriate.
  • CSP provides security products, features, and security guides to help CSCs carry out its own security activities.

Cloud Service Customer

  • CSC is responsible for the security in the cloud, which encompasses cloud resources provided by CSP.
  • CSC is responsible for securing their data and the applications by utilizing security features, security services and cost management while complying with relevant laws and regulations.