Azure 基礎結構安全性Azure infrastructure security

Microsoft Azure 是在 Microsoft 管理並操作的資料中心執行。Microsoft Azure runs in datacenters managed and operated by Microsoft. 這些分散各地的資料中心在安全性與可靠性方面皆符合主要的業界標準,例如 ISO/IEC 27001:2013 和 NIST SP 800-53。These geographically dispersed datacenters comply with key industry standards, such as ISO/IEC 27001:2013 and NIST SP 800-53, for security and reliability. 這些資料中心是由 Microsoft 作業人員管理、監視及進行系統管理。The datacenters are managed, monitored, and administered by Microsoft operations staff. 這些作業人員在全天候持續提供世界上最大型線上服務方面擁有多年的經驗。The operations staff has years of experience in delivering the world’s largest online services with 24 x 7 continuity.

本系列文章提供 Microsoft 為保護 Azure 基礎結構所做措施的相關資訊。This series of articles provides information about what Microsoft does to secure the Azure infrastructure. 這些文章說明:The articles address:

共同責任模式Shared responsibility model

了解您與 Microsoft 之間的責任劃分相當重要。It’s important to understand the division of responsibility between you and Microsoft. 在內部部署環境中,您擁有整個堆疊,但是當您移到雲端時,部分責任就會轉移給 Microsoft。On-premises, you own the whole stack, but as you move to the cloud, some responsibilities transfer to Microsoft. 下圖說明依據堆疊部署類型 (軟體即服務 [SaaS]、平台即服務 [PaaS]、基礎結構即服務 [IaaS] 與內部部署) 區分的責任區域。The following graphic illustrates the areas of responsibility, according to the type of deployment of your stack (software as a service [SaaS], platform as a service [PaaS], infrastructure as a service [IaaS], and on-premises).

顯示責任的圖表

下列項目一律由您負責 (不論部署類型):You are always responsible for the following, regardless of the type of deployment:

  • 資料Data
  • 端點Endpoints
  • 帳戶Account
  • 存取管理Access management

請務必了解您與 Microsoft 之間就 SaaS、PaaS 及 IaaS 部署方面的職責劃分。Be sure that you understand the division of responsibility between you and Microsoft in a SaaS, PaaS, and IaaS deployment. 如需詳細資訊,請參閱雲端運算的共同責任For more information, see Shared responsibilities for cloud computing.

後續步驟Next steps

若要深入了解 Microsoft 為協助保護 Azure 基礎結構執行了哪些動作,請參閱:To learn more about what Microsoft does to help secure the Azure infrastructure, see: