This standard aims to implement the security requirements in the "Methods for Assessing Cloud Computing Service Security," including "improving the security and controllability of cloud computing services" and "focusing on evaluating the technical, product, and service supply chain security situation of cloud platforms." It also supports the security assessment work related to system development and supply chain security in GB/T 31168 "Information Security Technology - Security Capability Requirements for Cloud Computing Services," standardizing the application of open-source technologies in cloud computing platforms. This will guide users in making reasonable purchases and uses of cloud computing products that involve open-source technologies.
T/CA 020-2024 history
2024T/CA 020-2024 Cloud computing open source technology application security specifications