CSA Research

Best practices, guidance, frameworks and tools to help the industry secure the cloud. Read our research to get your questions around cloud security answered.

CSA Research is created by the industry for the industry and is both vendor-neutral and consensus driven. Our research is created by subject matter experts who volunteer for our working groups. Each working group focuses on a unique topic or aspect of cloud security, from IoT, DevSecOps, Serverless and more, we have working groups for over 20 areas of cloud computing. You can view a list of all active research working groups. To find out more about how our research is created and the process we follow you can view the CSA Research Lifecycle.

Join a Working Group Meeting

Begins at
Serverless Working Group
Continuous Audit Metrics Working Group
Quantum-safe Security Working Group

Contribute to CSA Research

Peer reviews allow security professionals from around the world to collaborate on CSA research. Provide your feedback on the following documents in progress.

Latest Research

Crypto-Asset Exchange Security Guidelines

Crypto-Asset Exchange Security Guidelines

Release Date: 04/13/2021

Thanks to the blockchain tec...

Zero Trust Architecture Expert Group Charter

Zero Trust Architecture Expert Group Charter

Release Date: 04/08/2021

The CSA Zero Trust Architecture Expert Group will review and advise on the scope, curriculum, objectives, structure, go-to-marke...

Critical Controls Implementation for Oracle E-Business Suite

Critical Controls Implementation for Oracle E-Business Suite

Release Date: 04/05/2021

Oracle E-Business Suite (EBS) clients should address cloud migration as much more than a data center migration project. Cloud mi...