Membership
Join as an Organization
Enterprises
Solution Providers
Contact Us
Current Members
Member Portal
Initiatives & Partnerships
AI Safety Initiative
CxO Trust
Zero Trust Advancement Center
Trusted Cloud Providers
Trusted Cloud Consultant
Other Opportunities
Event Sponsorships
Join as Individual
Chapters
Circle Community Forum
Research Working Groups
Volunteer Opportunities
STAR Program
STAR Home
STAR Registry
Submit to Registry
Provide Feedback
Certified STAR Auditors
STAR Enabled Solutions
Stay compliant in the cloud
CCAK Training
STAR Lead Auditor Training
Training for Government Agencies
Governance, Risk & Compliance Tools
Cloud Controls Matrix (CCM)
Consensus Assessment Initiative Questionnaire (CAIQ)
EU Cloud Code of Conduct
STAR Level 1
At level one organizations submit a self-assessment.
View companies at level one
Learn about level one
STAR Level 2
At level two organizations earn a certification or third-party attestation.
View companies at level two
Learn about level two
Certificates & Training
Online Education Platforms
Knowledge Center
CSA Exams
Events
Learn and network while you earn CPE credits.
Virtual Events & Webinars
Event Sponsorships
Certificates
Certificate of Cloud Security Knowledge (CCSK)
Certificate of Cloud Auditing Knowledge (CCAK)
Certificate of Competence in Zero Trust (CCZT)
Digital Badges
Trainings
Cloud Infrastructure Security Training
STAR Lead Auditor Training
Advanced Cloud Security Practitioner (ACSP) Training
CCSK Train the Trainer
Training Network
Become an Instructor
Become a Training Partner
Specialized Training Options
Train my entire team
Training for Government Agencies
Research
CSA Research
Latest Research
Working Groups
Open Peer Reviews
Research Topics
Strategic Initiatives
AI Safety Initiative
Zero Trust Advancement Center
CxO Trust
Trusted Cloud Consultant
FinCloud Security
Thought Leadership
CloudBytes Webinars
Blog
Getting Started with CSA Research
Cloud security best practices
Assess your cloud compliance
Security questionnaire for vendors
Top threats to cloud computing
Cloud Security Glossary
Awards & Recognition
Juanita Koilpillai Awards
Research Fellows
Critical Topics
AI Safety Initiative
AI Technology and Risk
AI Governance & Compliance
AI Controls
AI Organizational Responsibilities
Enterprise Architecture
Blockchain
Zero Trust
DevSecOps
Top Threats
Membership
Join as an Organization
Enterprises
Solution Providers
Contact Us
Current Members
Member Portal
Initiatives & Partnerships
AI Safety Initiative
CxO Trust
Zero Trust Advancement Center
Trusted Cloud Providers
Trusted Cloud Consultant
Other Opportunities
Event Sponsorships
Join as Individual
Chapters
Circle Community Forum
Research Working Groups
Volunteer Opportunities
STAR Program
STAR Home
STAR Registry
Submit to Registry
Provide Feedback
Certified STAR Auditors
STAR Enabled Solutions
Stay compliant in the cloud
CCAK Training
STAR Lead Auditor Training
Training for Government Agencies
Governance, Risk & Compliance Tools
Cloud Controls Matrix (CCM)
Consensus Assessment Initiative Questionnaire (CAIQ)
EU Cloud Code of Conduct
STAR Level 1
At level one organizations submit a self-assessment.
View companies at level one
Learn about level one
STAR Level 2
At level two organizations earn a certification or third-party attestation.
View companies at level two
Learn about level two
Certificates & Training
Online Education Platforms
Knowledge Center
CSA Exams
Events
Learn and network while you earn CPE credits.
Virtual Events & Webinars
Event Sponsorships
Certificates
Certificate of Cloud Security Knowledge (CCSK)
Certificate of Cloud Auditing Knowledge (CCAK)
Certificate of Competence in Zero Trust (CCZT)
Digital Badges
Trainings
Cloud Infrastructure Security Training
STAR Lead Auditor Training
Advanced Cloud Security Practitioner (ACSP) Training
CCSK Train the Trainer
Training Network
Become an Instructor
Become a Training Partner
Specialized Training Options
Train my entire team
Training for Government Agencies
Research
CSA Research
Latest Research
Working Groups
Open Peer Reviews
Research Topics
Strategic Initiatives
AI Safety Initiative
Zero Trust Advancement Center
CxO Trust
Trusted Cloud Consultant
FinCloud Security
Thought Leadership
CloudBytes Webinars
Blog
Getting Started with CSA Research
Cloud security best practices
Assess your cloud compliance
Security questionnaire for vendors
Top threats to cloud computing
Cloud Security Glossary
Awards & Recognition
Juanita Koilpillai Awards
Research Fellows
Critical Topics
AI Safety Initiative
AI Technology and Risk
AI Governance & Compliance
AI Controls
AI Organizational Responsibilities
Enterprise Architecture
Blockchain
Zero Trust
DevSecOps
Top Threats
Cloud 101CircleEventsBlog
Master CSA’s Security, Trust, Assurance, and Risk program—download the STAR Prep Kit for essential tools to enhance your assurance!

CSA Research Publications

Whitepapers, Reports and Other Resources

Research Home
Publications
Working Groups
Peer Reviews
Upcoming Meetings
Home
Research
Publications

Browse Publications

AOSSL and CCM Technote

AOSSL and CCM Technote
Release Date: 12/18/2014

Cloud computing is the future, and in many cases, the present of information technology. Always On SSL (AOSSL) is rapidly becoming an essential practice to h...

Request to download
Big Data Taxonomy

Big Data Taxonomy
Release Date: 09/18/2014

A research document outlining the six dimensions of big data to help decision makers navigate the myriad choices in compute and storage infrastructures as we...

Request to download
Cloud Usage: Risks and Opportunities

Cloud Usage: Risks and Opportunities
Release Date: 09/15/2014

This survey was circulated to over 165 IT and security professionals in the U.S. and around the globe representing a variety of industry verticals and enterp...

Request to download
Data Protection Heat Index

Data Protection Heat Index
Release Date: 09/12/2014

The Cloud Security Alliance surveyed a select group of global data privacy experts with the intention to measure attitudes towards data protection areas that...

Request to download
Consensus Assessments Initiative Questionnaire v3.0.1 Info Sheet

Consensus Assessments Initiative Questionnaire v3.0.1 Info Sheet
Release Date: 07/29/2014

Request to download
Cloud Controls Matrix v3.0.1 Info Sheet

Cloud Controls Matrix v3.0.1 Info Sheet
Release Date: 07/29/2014

Find out how many controls are in the Cloud Controls Matrix v3-0-1 in this info sheet.

Request to download
Cloud Controls Matrix v3.0.1 (July 2014)

Cloud Controls Matrix v3.0.1 (July 2014)
Release Date: 07/11/2014

New and updated mappings, consolidation of redundant controls, rewritten controls for clarity of intent, STAR enablement, and SDO alignment.

Request to download
Big Data, Big Concerns, and What the White House Wants to Do about It

Big Data, Big Concerns, and What the White House Wants to Do about It
Release Date: 05/29/2014

Big data tools offer astonishing and powerful opportunities to unlock previously inaccessible insights from new and existing data sets. Large amounts of data...

Request to download
SDP Specification v1.0

SDP Specification v1.0
Release Date: 04/30/2014

This document outlines a Cloud Security Alliance (CSA) initiated protocol for the Software Defined Perimeter specification, and requests discussion and sugge...

Request to download
SDP Hackathon Whitepaper

SDP Hackathon Whitepaper
Release Date: 04/17/2014

The CSA SDP Hackathon challenged hackers to attack a server defended by a software defined perimeter. Of the billions of packets fired at the server, not one...

Request to download
Comment on Big Data and the Future of Privacy

Comment on Big Data and the Future of Privacy
Release Date: 04/09/2014

Responses to questions on the relationship between big data and public policy, government, technology trends, and policy frameworks.

Request to download
Research Lifecycle

Research Lifecycle
Release Date: 03/19/2014

A step-by-step guide to producing and distributing research artifacts. From inspiration and conception to publication and distribution, it covers the the pro...

Request to download
Top Ten Challenges in Cryptography for Big Data

Top Ten Challenges in Cryptography for Big Data
Release Date: 03/18/2014

Request to download
The Future of Security

The Future of Security
Release Date: 02/25/2014

Disruption defines the business of information security. New technologies change how businesses work, as well as what risks people take. Attackers shift thei...

Request to download
The Future of Security: Executive Summary

The Future of Security: Executive Summary
Release Date: 02/25/2014

Disruption defines the business of information security. New technologies change how businesses work, as well as what risks people take. Attackers shift thei...

Request to download
What CISOs Need to Know About Cloud Computing

What CISOs Need to Know About Cloud Computing
Release Date: 01/14/2014

This paper details the critical differences between cloud computing and traditional infrastructure for security professionals, and suggests where to focus se...

Request to download
What CISOs Need to Know About Cloud Computing | Summary

What CISOs Need to Know About Cloud Computing | Summary
Release Date: 01/14/2014

Request to download
SAFEcode/CSA: Practices for Secure Development of Cloud Applications

SAFEcode/CSA: Practices for Secure Development of Cloud Applications
Release Date: 12/04/2013

SAFECode and CSA partnered to determine whether additional software security guidance was needed to address unique threats to the cloud computing, and if so,...

Request to download
Software Defined Perimeter

Software Defined Perimeter
Release Date: 12/01/2013

This document explains the software defined perimeter (SDP) security framework and how it can be deployed to protect application infrastructure from network-...

Request to download
Net+ Initiative CCM v.3 Candidate Mappings

Net+ Initiative CCM v.3 Candidate Mappings
Release Date: 12/01/2013

A team of 30 CIOs, CISOs, and other executives from Internet2’s membership (both higher education institutions and industry service providers) developed this...

Request to download
« First
21
22
23
25
27
28
29
Last »