Cloud Security Assurance Program in Korea (CSAP)
Overview
The Cloud Security Assurance Program (CSAP) enables Korean public sector customers to comply with Korean security standards and regulations stipulated by the Korean government. By obtaining this certification, AWS can now provide secure cloud services to domestic public sector organizations, enabling them to safely innovate on the AWS platform.
CSAP is a Korean government-backed certification administered by the Korea Internet and Security Agency (KISA) and affiliated with the Ministry of Science and ICT (MSIT) of Korea. CSAP is a security certification system that evaluates cloud computing services against established security standards, as mandated by Article 23-2 of the Act on the Development of Cloud Computing and User Protection. This certification ensures and enhances information protection standards for services provided by cloud service providers. CSAP was introduced in 2017 with two main purposes:
- To provide national and public institutions with verified, safe, and reliable private cloud services.
- To implement objective and fair security certification standards that address users' security concerns while enhancing cloud service competitiveness.
AWS services in scope for the CSAP certification can be found at AWS Services in Scope by Compliance Program. If you would like to learn more about using these services and/or have interest in other services please contact us.
