CSA Research Publications
Whitepapers, Reports and Other Resources
Browse Publications
 | CCM v3.0 Info Sheet This info sheet is for an old version of the Cloud Controls Matrix (CCM). You learn more about the latest version of the CCM and download it here: https://cl... Request to download |
 | Cloud Controls Matrix v3.0 There is a new version of CCM available. The latest version has been combined with the Cloud Controls Matrix. Cloud Controls Matrix (CCM) Version 3.0, is a... Request to download |
 | Big Data Analytics for Security Intelligence |
 | Publicizing Your STAR Certification The following guidelines will help you to apply good practice in publicizing, communicating and promoting your certification to stakeholders, including staff... Request to download |
 | Government Access to Information The survey received almost 500 responses from CSA members around the world. It found that 56% of non-US residents were now less likely to use US-based cloud ... Request to download |
 | Mapping the Forensic Standard ISO/IEC 27037 to Cloud Computing The purpose of this document is to survey the issues related to forensic investigation in cloud environments, to describe the international standards for clo... Request to download |
 | Expanded Top Ten Big Data Security and Privacy Challenges Big Data remains one of the most talked about technology trends in 2013. But lost among all the excitement about the potential of Big Data are the very real ... Request to download |
 | Cloud Computing Vulnerability Incidents: A Statistical Overview In an attempt to ascertain Cloud Computing reliability, 11,491 news articles on cloud computing-related outages from 39 news sources between Jan 2008 and Feb... Request to download |
 | Planning for E-Discovery in the Cloud |
 | Cloud Computing: What Damages in Case of Outages Service interruptions are inevitable regardless of whether the cloud service provider is a small company or a large company. When a cloud service goes down, ... Request to download |
 | Cloud Controls Matrix v1.4 This is an old version of the Cloud Controls Matrix (CCM). You learn more and download the latest version of the CCM here: https://cloudsecurityalliance.org/... Request to download |
 | GRC Stack |
 | Enterprise Architecture v2.0 The Enterprise Architecture is both a methodology and a set of tools that enable security architects, enterprise architects and risk management professionals... Request to download |
 | CSA Position Paper on AICPA Service Organization Control Reports The Cloud Security Alliance (CSA) has drafted the CSA Position Paper on AICPA Service Organization Control Reports as a means to educate its members and prov... Request to download |
| Privacy Level Agreement (PLA) Outline Annex |
 | Privacy Level Agreement (PLA) Outline for the Sale of Cloud Services in the European Union The Outline provides a structure for Cloud Service Providers (CSP) to disclose, in a consistent matter, information about the privacy and data protection pol... Request to download |
 | The Notorious Nine: Cloud Computing Top Threats in 2013 Providing organizations with up-to-date, expert-informed understanding of cloud security threats in order to make educated risk-management decisions regardin... Request to download |
 | What the Proposed EU Data Protection Regulation Means for Cloud Users |
 | Article 29 Working Party Cloud Computing Opinion: A Blow to Safe Harbor The Article 29 Data Protection Working Party—which includes representatives of the data protection authorities of each of the European Union member states—re... Request to download |
 | International Standardization Council Roles and Responsibilities for Liaison Officer |