CSA Research Publications
Whitepapers, Reports and Other Resources
Browse Publications
Consensus Assessments Initiative Questionnaire v3.0.1 (12-5-16 Update) There is a new version of CAIQ available. The latest version has been combined with the Cloud Controls Matrix. Realigns the CAIQ questions to CCM v3.0.1 co... Request to download | |
The Cloud Balancing Act for IT: Between Promise and Peril Cloud Adoption does not have to mean opening up your organization to increased security risks and threats if the right policies are in place. That’s what the... Request to download | |
CloudTrust Protocol Prototype Source Code The Cloud Trust Protocol (CTP) is designed to be a mechanism by which cloud service customers can ask for and receive information related to the security of ... Request to download | |
Guidelines for Safe Smart Cities Interest in the smart city concept has grown continuously over the past few years, with the top research being done in the Internet of Things (IoT) and urban... Request to download | |
International Standardization Council Policies & Procedures In today’s technological environment, standards play a critical role in product development and market competitiveness. Every input, behavior, and action has... Request to download | |
Cloud Forensics Capability Maturity Model | |
CloudTrust Protocol Data Model and API The Cloud Trust Protocol (CTP) is designed to be a mechanism by which cloud service customers can ask for and receive information related to the security of ... Request to download | |
Identity and Access Management for the Internet of Things This document is the first in a series of summary guidance aimed at providing easily understandable recommendations to information technology staff charged w... Request to download | |
What is Post-Quantum Cryptography Most people pay little attention to the lock icon on their browser address bar that signifies a secure HTTPS connection. They don’t realize that there is an ... Request to download | |
What is Quantum Key Distribution? The security of QKD relies on fundamental laws of nature, which are invulnerable to increasing computational power, new attack algorithms or quantum computer... Request to download | |
Cloud Computing Market Maturity This white paper reports the results of a recent study conducted by ISACA and the Cloud Security Alliance to examine cloud market maturity through four lense... Request to download | |
Security Considerations for Private vs. Public Clouds The Cloud Security Alliance teamed up with Palo Alto Networks to produce this whitepaper. A public cloud deployment occurs when a cloud’s entire infrastructu... Request to download | |
The Mandate for Meaningful Cyber Incident Sharing for the Cloud New and increasingly significant cybersecurity breaches are reported practically every day. For most companies, it is no longer a matter of whether they will... Request to download | |
Privacy Level Agreement - Version 2 PLA [V2] is intended to be used as an appendix to a Cloud Services Agreement, and to describe the level of privacy protection that the CSP will provide. Whil... Request to download | |
SMB Membership Brochure APAC | |
SME Cloud Security This 2015 Hong Kong Small and Medium-sized Enterprises (SME) Cloud Adoption, Security and Privacy Readiness Survey was conducted by the Internet Society Hong... Request to download | |
International Standardization Council Charter | |
What is Quantum Safe Security An overview of current cryptographic techniques being used, proactive defenses, and the threats and impact of quantum computing. Request to download | |
Best Practices for Mitigating Risks in Virtualized Environments | |
FedRAMP Cloud Controls Matrix v3.0.1 Candidate Mapping |