Research

Working Groups

The CSA maintains Working Groups across 38 domains of Cloud Security.

EMEA Research Projects

The CSA EMEA research team is involved in 3 publicly funded projects.

CloudWatch 2 Project

One of the objectives of the Digital Single Market Strategy is creating long-term growth potential. Europe needs a digital market that allows new business models to flourish, start-ups to grow and industry to innovate and compete on a global scale. The European Commission’s programme for Software, Services and Cloud gives companies and research institutions the freedom to innovate technically in cloud computing. This is how European research and innovation initiatives bring continuous improvements and deliver services and solutions with increasing value for the digital single market. CloudWatch 2 provides a set of services to help European R&I initiatives capture the value proposition and business case as key to boosting the European economy.

Learn more

EU-SEC Project

The European Security Certification Framework (EU-SEC) strives to address the security, privacy and transparency challenges associated with the greater externalisation of IT to Cloud services. EU-SEC will create a certification framework under which existing certification and assurance schemes can co-exist. Furthermore, it will feature a tailored architecture and provide a set of tools to improve…

Learn more

TAKEDOWN Project

TakeDown is an EU-project for developing effective and efficient security solutions against organised crime and terrorist networks. Organized Crime and Terrorist Networks (OC/TN) are a major challenge for the EU. Many different stakeholder groups are involved in creating awareness, preventing, identifying and intervene in case of risk or threat. But in order to develop better…

Learn more

APAC Research Projects

The CSA APAC research team is involved in 1 publicly funded project.

STRATUS

STRATUS Project

STRATUS project, a six-year, NZ $12.2 million cyber security project funded by the Ministry of Business, Innovation, and Employment. Led by the University of Waikato, CSA is part of the consortium that was awarded the funding and the work which began in November 2014. STRATUS, which is an acronym for Security Technologies Returning Accountability, Transparency and User-centric Services in the Cloud, is an ambitious project that intends to create a suite of novel security tools, techniques and capabilities that will return control of data to cloud computing users. More importantly, it aims to put New Zealand ICT industry onto the world map capitalizing on the global trend in cloud computing, cybersecurity and data analytics.

Learn more

Initiative Details	Close Date
CCM C5 Mapping Description: This document aims to help organizations assess and bridge compliance gaps between the cloud security frameworks of BSI and the Cloud Security Alliance (CSA). The document contain mappings, gap analysis and gaps compensation between the Cloud Controls Matrix (CCM) and the C5 compliance controls catalogue. The CSA and the CCM working group hope that organizations will find this document useful for their cloud security compliance programs.	October 07, 2018	Contribute now

Submit your research ideas to [email protected].

Move your cursor around and click on each section to learn more about the steps of the Research Lifecycle.

RESEARCH

LIFECYCLE

Open Peer Reviews

CCM C5 Mapping
Closes - October 07, 2018

See All Inititatives

Upcoming Meetings

Internet of Things Working Group

Platform: Webex
Meeting ID: 192 364 319

Join here on Sep 20, 10:00am PT

Open Certification Framework (OCF) Working Group

Platform: GoToMeeting
Meeting ID: 445-767-181

Join here on Sep 21, 7:00am PT

Enterprise Architecture Working Group

Platform: Webex
Meeting ID: 194 099 756

Join here on Sep 21, 12:00pm PT

Dial-in by Phone to Webex

Dial one of these phone numbers then enter the Meeting ID when prompted.

US: +1-415-655-0001 
Austria: +43-125-302-1547
Belgium: +32-2894-8319 
Denmark: +45-3272-7726 
France: +33-17091-8651 
Germany: +49-6925511-4406 
Italy: +39-023041-0445 
Luxembourg: +352-2088-1746 
Netherlands: +31-20794-6701 
Spain: +34-91769-9724 
Switzerland: +41-43456-9569 
UK: 44-203-478-5291

Can’t access your meeting?
Get help with Webex

Security Trust and Assurance Registry

STAR is a free, publicly accessible registry that documents the security controls provided by various cloud computing offerings.

Welcome New Members

The CSA is a member-driven organization, chartered with promoting the use of best practices for providing security assurance within Cloud Computing. We would like to welcome our newest members:

JNN GROUP, INC
Nasuni
OverWatchID
Avid Secure Inc.
Thrio, Inc.

View all Members

Get Involved

Learn how you can participate in Cloud Security Alliance's goals to promote the use of best practices for providing security assurance within Cloud Computing.

Get involved

Upcoming Events

See all events

Artificial Intelligence (AI)	Big Data	Blockchain/Distributed Ledger
Cloud Component Specifications	Cloud Controls Matrix	Cloud Data Center Security
Cloud Data Governance	Cloud Security Services Management	Cloud Vulnerabilities
CloudAudit	CloudCISC	CloudTrust
CloudTrust Protocol	Consensus Assessments	Containers and Microservices
DevSecOps	Enterprise Architecture	Enterprise Resource Planning (ERP) Security
Financial Services Stakeholder Platform	Health Information Management	Incident Management and Forensics
Industrial Control Systems (ICS) Security	Innovation	Internet of Things
Legal	Mobile	Mobile Application Security Testing (MAST)
Open API	Open Certification Framework (OCF)	Privacy Level Agreement
Quantum-safe Security	SaaS Governance	Security as a Service
Security Guidance	Software Defined Perimeter	Telecom
Top Threats	Virtualization

Research

Working Groups

EMEA Research Projects

CloudWatch 2 Project

EU-SEC Project

TAKEDOWN Project

APAC Research Projects

STRATUS Project