您现在访问的是微软AZURE全球版技术文档网站,若需要访问由世纪互联运营的MICROSOFT AZURE中国区技术文档网站,请访问 https://docs.azure.cn.

Azure 基础结构安全性Azure infrastructure security

Microsoft Azure 在由 Microsoft 管理和运营的数据中心运行。Microsoft Azure runs in datacenters managed and operated by Microsoft. 这些地理位置分散的数据中心符合有关安全性和可靠性的关键行业标准,例如 ISO/IEC 27001:2013 和 NIST SP 800-53。These geographically dispersed datacenters comply with key industry standards, such as ISO/IEC 27001:2013 and NIST SP 800-53, for security and reliability. 它们由 Microsoft 运营人员进行管理和监控。The datacenters are managed, monitored, and administered by Microsoft operations staff. 这些运营人员在提供全球最大的全天候持续运行的联机服务方面拥有多年经验。The operations staff has years of experience in delivering the world’s largest online services with 24 x 7 continuity.

本系列文章提供了有关 Microsoft 如何保护 Azure 基础结构的信息。This series of articles provides information about what Microsoft does to secure the Azure infrastructure. 文章讨论了:The articles address:

共担责任模型Shared responsibility model

请务必了解你与 Microsoft 之间的责任分工。It’s important to understand the division of responsibility between you and Microsoft. 在本地,你拥有整个堆栈,但迁移到云后,某些责任将转移到 Microsoft。On-premises, you own the whole stack, but as you move to the cloud, some responsibilities transfer to Microsoft. 下图说明了根据堆栈部署类型(软件即服务 [SaaS]、平台即服务 [PaaS]、基础结构即服务 [IaaS] 和本地)划分的职责范围。The following graphic illustrates the areas of responsibility, according to the type of deployment of your stack (software as a service [SaaS], platform as a service [PaaS], infrastructure as a service [IaaS], and on-premises).

显示职责的图形

无论部署类型如何,你始终负责以下内容:You are always responsible for the following, regardless of the type of deployment:

  • 数据Data
  • 终结点Endpoints
  • 帐户Account
  • 访问管理Access management

确保了解你与 Microsoft 在 SaaS、PaaS 和 IaaS 部署中的责任分工。Be sure that you understand the division of responsibility between you and Microsoft in a SaaS, PaaS, and IaaS deployment. 有关详细信息,请参阅云计算的责任分担For more information, see Shared responsibilities for cloud computing.

后续步骤Next steps

若要详细了解 Microsoft 如何帮助保护 Azure 基础结构,请参阅:To learn more about what Microsoft does to help secure the Azure infrastructure, see: