How to create a sound security certification scheme - a European experience

Security and privacy certifications and attestations have been identified as one of most effective and efficient means to increase the level of trust in cloud services and stimulate their adoption. Based on this on assumption a number of efforts have begun in Europe at policy level mainly led by the European Commission (EC), in collaboration with ENISA and the Clouds Standards Coordination CSC ETSI effort. These efforts have aroused much interest in European solutions for cloud standards and software industry development beyond the European Union. In this document CloudWATCH gives an overview of how, through a team of industry experts, the European Commission have established a core set of themes that a sound security certificates should cover.

Download the summary.