클라우드 서비스에서 개인정보보호의 적합성 평가지표 개발에 관한 연구

A Cloud services is progressed to change IT environment in the public sector and private sector and is being promoted national policy reflected expectation to reduce budget and lead administrative efficiency. In addition, it is concerned about safety of system because personal information is collected by cloud service. Therefore, this study is to suggest evaluation indicators that cloud service agency should keep the adequacy of privacy for cloud service. For the study it needed to select evaluation indicators from privacy system progressing by government as like MOGAHA. KCC, MSIP, etc. and privacy regulations such as laws, guidelines, etc. and the results of past studies. And the evaluation indicators was selected by expert's delphi analysis with evaluation factors in institutional aspects, technical aspects, and administrative aspects. Firstly, the institutional aspects was consisted with privacy policy and organization and compliance details in life cycle. Secondly, the technical aspects is divided with safety measures for privacy and protection standards for new technologies. Finally, the administrative aspects is separated with the operation system and responsive system for privacy were evaluated. Thus, the derived evaluation indicators can be provided for comprehensively preemptive response for prior issues of privacy that clouding development law was enacted and cloud service is broaden.