European Cloud Security Project Leaves Rich Legacy of Materials for Cloud Stakeholders

CSA contributions led to development of multi-party recognition framework for cloud security certifications, continuous auditing-based certification, and Privacy Code of Conduct

Seattle — Dec. 19, 2019 – The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment, today announced the European Security Certification Framework (EU-SEC) project has concluded. During the course of its three-year participation, CSA contributed to numerous initiatives to benefit cloud stakeholders, among them a multi-party recognition framework for cloud security certifications that has brought clarity to the compliance process, continuous audit-based certification that offers increased trust in the assurance process, and a Privacy Code of Conduct that helps cloud service providers understand GDPR readiness and demonstrate compliance.

The primary goal of EU-SEC is to improve trust in cloud services by creating a framework under which existing certification and assurance approaches can co-exist. The framework also adds an additional layer of trust, assurance and transparency by including continuous auditing-based certifications. It is targeted at cloud stakeholders wishing to improve the business value, efficiency and effectiveness of their approach to cloud security and privacy compliance. This includes auditors, cloud service providers, regulators, standard owners and cloud users.

In addition to all the work required to build the framework architecture, the project partners worked hard to produce a variety of materials to ensure the project outcomes remain at the disposal of cloud stakeholders. The resources include:

• White papers
• Videos
• Training packages
• Webinars

Jürgen Grossman, coordinator of the EU-SEC project said, "There have been many challenges over the last three years, but I am proud of the results that EU-SEC has achieved. These results have been obtained thanks to the hard work of all the partners who brought their expertise to the consortium. I’m confident the outcomes will benefit European cloud stakeholders.”

The Cloud Security Alliance would like to encourage anyone interested in benefiting from the framework to get in touch via the website.

The EU-SEC project, which will come to an end on Dec. 31, 2019, received funding from the European Union’s HORIZON Framework Program for research, technological development and demonstration under grant agreement #731845.

About EU-SEC

The project “European Security Certification Framework” (EU-SEC) aimed to create a European framework for certification schemes and evaluation concepts to secure cloud infrastructures. Within this framework, existing national and international certifications can co-exist. EU-SEC will improve the business value as well as the effectiveness and efficiency of existing cloud security certification schemes.