CSAIChaptersEventsBlog
Explore how AI-led, human-supervised security operations are reshaping the modern SOC. Register for the July 15 webinar →

Working Group

Open Certification Framework

The CSA Open Certification working group is an industry initiative to allow global, accredited, trusted certification of cloud providers.
Open Certification Framework Working Group Charter
Open Certification Framework Working Group Charter

Download

Working Group
Open Certification Framework
Working Group Overview

The CSA Open Certification working group is an industry initiative to allow global, accredited, trusted certification of cloud providers. It manages the foundation that runs and monitors the CSA STAR Certification program.

What do we discuss during our meetings? 
During these meetings we typically discuss changes in the industry and certification schemes, as well as collaborate on projects the group is working on. Be sure to familiarize yourself with the CSA STAR program as that is what this group is focused on.

Working Group Leadership

Daniele Catteddu
Daniele Catteddu

Daniele Catteddu

Chief Technology Officer, CSA

Daniele Catteddu is an information security and risk management practitioner, technologies expert and privacy evangelist with over 15 of experience. He worked in several senior roles both in the private and public sector. He is member of various national and international security expert groups and committees on cyber-security and privacy, keynote speaker at several conferences and author of numerous studies and papers on risk management, ...

Read more

Working Group Co-Chairs

Ryan Mackie
Ryan Mackie

Ryan Mackie

Principal, Schellman & Company

Ryan Mackie is a Principal at Schellman & Company, LLC. Ryan manages SOC, PCI-DSS, ISO, HIPAA, and Cloud Security Alliance (CSA) STAR Certification and Attestation service delivery and also oversees the firm-wide methodology and execution for the ISO certification services, including ISO 27001, ISO 9001, ISO 20000, and ISO 22301 as well as CSA STAR certification services. He has over 20 years of experience, including 14 at Schellman, 2 at P...

Read more

Ronald Tse
Ronald Tse

Ronald Tse

CEO, Ribose

Ronald has served CSA in numerous capacities, including as a member of CSA's APAC Research Advisory and International Standardization Council. Additionally, he co-chairs the Open Certification Framework (OCF), SaaS Governance, and DevSecOps working groups. He is the founder and CEO of Ribose, where under his leadership the company has been consistently awarded the industry's highest cloud security ratings, including being the on...

Read more

Publications in ReviewOpen Until
AI Agents: Architecture and Control PlaneJul 10, 2026
MAESTRO v2Jul 10, 2026
Agent Shared Security and Safety Responsibility Model (Agent 3SRM)Jul 10, 2026
Integrating DNS and SDP: Enhanced Zero Trust Policy Enforcement 2.0 Jul 10, 2026
View all
Who can join?

Anyone can join a working group, whether you have years of experience or want to just participate as a fly on the wall.

What is the time commitment?

The time commitment for this group varies depending on the project. You can spend a 15 minutes helping review a publication that's nearly finished or help author a publication from start to finish.

Virtual Meetings

Attend our next meeting. You can just listen in to decide if this group is a good for you or you can choose to actively participate. During these calls we discuss current projects, and well as share ideas for new projects. This is a good way to meet the other members of the group. You can view all research meetings here.

Jul

2

Thu, July 2, 9:00am - 10:00am
Open Certification Framework WG Meeting
See details
This is an updated invite to reflect a new Zoom series and shift to twice weekly.

──────────
Andy Ruth is inviting you to a scheduled Zoom meeting.

Topic: My Meeting
Time: Feb 27, 2025 07:00 AM Pacific Time (US and Canada)
        Every 2 weeks on Thu, 79 occurrence(s)
Please download and import the following iCalendar (.ics) files to your calendar system.
Weekly: https://cloudsecurityalliance.zoom.us/meeting/tZMpdu-uqz4sGtFfmNj63YkGZ3BBC4TwQjrf/ics?icsToken=DP1T7ZxjwSd4OYVLYgAALAAAAIbIGH-sTqikUkaee5zNDnY9CJ5sHPAVcEDJR4MAqEWsc8zFUxs19NheJELiTL0ttxlMDer-sc63yFk2fDAwMDAwMQ&meetingMasterEventId=vBlZzx1SQyu_c3BRbiI00A
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/87416655605?pwd=EvaXfuiS1NobgP97n28rJ9LoHmdrxl.1

Meeting ID: 874 1665 5605
Passcode: 681158

---

One tap mobile
+12532158782,,87416655605# US (Tacoma)
+12532050468,,87416655605# US

---

Dial by your location
• +1 253 215 8782 US (Tacoma)
• +1 253 205 0468 US
• +1 720 707 2699 US (Denver)
• +1 346 248 7799 US (Houston)
• +1 669 444 9171 US
• +1 719 359 4580 US
• +1 564 217 2000 US
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 689 278 1000 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US

Meeting ID: 874 1665 5605

Find your local number: https://cloudsecurityalliance.zoom.us/u/kRTNsVD7t




──────────

Jul

2

Thu, July 2, 12:00pm - 1:05pm
OCF Whitepaper Working Session
See details
Hi all,
This slot worked best for all. We can shift if needed.


──────────

Andy Ruth is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/86061434382?pwd=LHNIac8qIZhNjkrTX9Be31kuFk86R7.1

Meeting agenda
https://docs.zoom.us/agenda/doc/9de08c75-de47-403c-aba5-0fd98a5fe308?from=chext

Meeting ID: 860 6143 4382
Passcode: 400367

---

One tap mobile
+12532050468,,86061434382# US
+12532158782,,86061434382# US (Tacoma)

Join instructions
https://cloudsecurityalliance.zoom.us/meetings/86061434382/invitations?signature=8bwXvwW2ZJwYa2ZqRbsT-A4mYkjOgb8YgsSbLuzl38E



──────────

Jul

9

Thu, July 9, 12:00pm - 1:05pm
OCF Whitepaper Working Session
See details
Hi all,
This slot worked best for all. We can shift if needed.


──────────

Andy Ruth is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/86061434382?pwd=LHNIac8qIZhNjkrTX9Be31kuFk86R7.1

Meeting agenda
https://docs.zoom.us/agenda/doc/9de08c75-de47-403c-aba5-0fd98a5fe308?from=chext

Meeting ID: 860 6143 4382
Passcode: 400367

---

One tap mobile
+12532050468,,86061434382# US
+12532158782,,86061434382# US (Tacoma)

Join instructions
https://cloudsecurityalliance.zoom.us/meetings/86061434382/invitations?signature=8bwXvwW2ZJwYa2ZqRbsT-A4mYkjOgb8YgsSbLuzl38E



──────────

Jul

16

Thu, July 16, 9:00am - 10:00am
Open Certification Framework WG Meeting
See details
This is an updated invite to reflect a new Zoom series and shift to twice weekly.

──────────
Andy Ruth is inviting you to a scheduled Zoom meeting.

Topic: My Meeting
Time: Feb 27, 2025 07:00 AM Pacific Time (US and Canada)
        Every 2 weeks on Thu, 79 occurrence(s)
Please download and import the following iCalendar (.ics) files to your calendar system.
Weekly: https://cloudsecurityalliance.zoom.us/meeting/tZMpdu-uqz4sGtFfmNj63YkGZ3BBC4TwQjrf/ics?icsToken=DP1T7ZxjwSd4OYVLYgAALAAAAIbIGH-sTqikUkaee5zNDnY9CJ5sHPAVcEDJR4MAqEWsc8zFUxs19NheJELiTL0ttxlMDer-sc63yFk2fDAwMDAwMQ&meetingMasterEventId=vBlZzx1SQyu_c3BRbiI00A
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/87416655605?pwd=EvaXfuiS1NobgP97n28rJ9LoHmdrxl.1

Meeting ID: 874 1665 5605
Passcode: 681158

---

One tap mobile
+12532158782,,87416655605# US (Tacoma)
+12532050468,,87416655605# US

---

Dial by your location
• +1 253 215 8782 US (Tacoma)
• +1 253 205 0468 US
• +1 720 707 2699 US (Denver)
• +1 346 248 7799 US (Houston)
• +1 669 444 9171 US
• +1 719 359 4580 US
• +1 564 217 2000 US
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 689 278 1000 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US

Meeting ID: 874 1665 5605

Find your local number: https://cloudsecurityalliance.zoom.us/u/kRTNsVD7t




──────────

Jul

16

Thu, July 16, 12:00pm - 1:05pm
OCF Whitepaper Working Session
See details
Hi all,
This slot worked best for all. We can shift if needed.


──────────

Andy Ruth is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/86061434382?pwd=LHNIac8qIZhNjkrTX9Be31kuFk86R7.1

Meeting agenda
https://docs.zoom.us/agenda/doc/9de08c75-de47-403c-aba5-0fd98a5fe308?from=chext

Meeting ID: 860 6143 4382
Passcode: 400367

---

One tap mobile
+12532050468,,86061434382# US
+12532158782,,86061434382# US (Tacoma)

Join instructions
https://cloudsecurityalliance.zoom.us/meetings/86061434382/invitations?signature=8bwXvwW2ZJwYa2ZqRbsT-A4mYkjOgb8YgsSbLuzl38E



──────────

Jul

23

Thu, July 23, 12:00pm - 1:05pm
OCF Whitepaper Working Session
See details
Hi all,
This slot worked best for all. We can shift if needed.


──────────

Andy Ruth is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/86061434382?pwd=LHNIac8qIZhNjkrTX9Be31kuFk86R7.1

Meeting agenda
https://docs.zoom.us/agenda/doc/9de08c75-de47-403c-aba5-0fd98a5fe308?from=chext

Meeting ID: 860 6143 4382
Passcode: 400367

---

One tap mobile
+12532050468,,86061434382# US
+12532158782,,86061434382# US (Tacoma)

Join instructions
https://cloudsecurityalliance.zoom.us/meetings/86061434382/invitations?signature=8bwXvwW2ZJwYa2ZqRbsT-A4mYkjOgb8YgsSbLuzl38E



──────────

Jul

30

Thu, July 30, 9:00am - 10:00am
Open Certification Framework WG Meeting
See details
This is an updated invite to reflect a new Zoom series and shift to twice weekly.

──────────
Andy Ruth is inviting you to a scheduled Zoom meeting.

Topic: My Meeting
Time: Feb 27, 2025 07:00 AM Pacific Time (US and Canada)
        Every 2 weeks on Thu, 79 occurrence(s)
Please download and import the following iCalendar (.ics) files to your calendar system.
Weekly: https://cloudsecurityalliance.zoom.us/meeting/tZMpdu-uqz4sGtFfmNj63YkGZ3BBC4TwQjrf/ics?icsToken=DP1T7ZxjwSd4OYVLYgAALAAAAIbIGH-sTqikUkaee5zNDnY9CJ5sHPAVcEDJR4MAqEWsc8zFUxs19NheJELiTL0ttxlMDer-sc63yFk2fDAwMDAwMQ&meetingMasterEventId=vBlZzx1SQyu_c3BRbiI00A
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/87416655605?pwd=EvaXfuiS1NobgP97n28rJ9LoHmdrxl.1

Meeting ID: 874 1665 5605
Passcode: 681158

---

One tap mobile
+12532158782,,87416655605# US (Tacoma)
+12532050468,,87416655605# US

---

Dial by your location
• +1 253 215 8782 US (Tacoma)
• +1 253 205 0468 US
• +1 720 707 2699 US (Denver)
• +1 346 248 7799 US (Houston)
• +1 669 444 9171 US
• +1 719 359 4580 US
• +1 564 217 2000 US
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 689 278 1000 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US

Meeting ID: 874 1665 5605

Find your local number: https://cloudsecurityalliance.zoom.us/u/kRTNsVD7t




──────────

Jul

30

Thu, July 30, 12:00pm - 1:05pm
OCF Whitepaper Working Session
See details
Hi all,
This slot worked best for all. We can shift if needed.


──────────

Andy Ruth is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/86061434382?pwd=LHNIac8qIZhNjkrTX9Be31kuFk86R7.1

Meeting agenda
https://docs.zoom.us/agenda/doc/9de08c75-de47-403c-aba5-0fd98a5fe308?from=chext

Meeting ID: 860 6143 4382
Passcode: 400367

---

One tap mobile
+12532050468,,86061434382# US
+12532158782,,86061434382# US (Tacoma)

Join instructions
https://cloudsecurityalliance.zoom.us/meetings/86061434382/invitations?signature=8bwXvwW2ZJwYa2ZqRbsT-A4mYkjOgb8YgsSbLuzl38E



──────────

Aug

6

Thu, August 6, 12:00pm - 1:05pm
OCF Whitepaper Working Session
See details
Hi all,
This slot worked best for all. We can shift if needed.


──────────

Andy Ruth is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/86061434382?pwd=LHNIac8qIZhNjkrTX9Be31kuFk86R7.1

Meeting agenda
https://docs.zoom.us/agenda/doc/9de08c75-de47-403c-aba5-0fd98a5fe308?from=chext

Meeting ID: 860 6143 4382
Passcode: 400367

---

One tap mobile
+12532050468,,86061434382# US
+12532158782,,86061434382# US (Tacoma)

Join instructions
https://cloudsecurityalliance.zoom.us/meetings/86061434382/invitations?signature=8bwXvwW2ZJwYa2ZqRbsT-A4mYkjOgb8YgsSbLuzl38E



──────────

Aug

13

Thu, August 13, 9:00am - 10:00am
Open Certification Framework WG Meeting
See details
This is an updated invite to reflect a new Zoom series and shift to twice weekly.

──────────
Andy Ruth is inviting you to a scheduled Zoom meeting.

Topic: My Meeting
Time: Feb 27, 2025 07:00 AM Pacific Time (US and Canada)
        Every 2 weeks on Thu, 79 occurrence(s)
Please download and import the following iCalendar (.ics) files to your calendar system.
Weekly: https://cloudsecurityalliance.zoom.us/meeting/tZMpdu-uqz4sGtFfmNj63YkGZ3BBC4TwQjrf/ics?icsToken=DP1T7ZxjwSd4OYVLYgAALAAAAIbIGH-sTqikUkaee5zNDnY9CJ5sHPAVcEDJR4MAqEWsc8zFUxs19NheJELiTL0ttxlMDer-sc63yFk2fDAwMDAwMQ&meetingMasterEventId=vBlZzx1SQyu_c3BRbiI00A
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/87416655605?pwd=EvaXfuiS1NobgP97n28rJ9LoHmdrxl.1

Meeting ID: 874 1665 5605
Passcode: 681158

---

One tap mobile
+12532158782,,87416655605# US (Tacoma)
+12532050468,,87416655605# US

---

Dial by your location
• +1 253 215 8782 US (Tacoma)
• +1 253 205 0468 US
• +1 720 707 2699 US (Denver)
• +1 346 248 7799 US (Houston)
• +1 669 444 9171 US
• +1 719 359 4580 US
• +1 564 217 2000 US
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 689 278 1000 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US

Meeting ID: 874 1665 5605

Find your local number: https://cloudsecurityalliance.zoom.us/u/kRTNsVD7t




──────────

Aug

13

Thu, August 13, 12:00pm - 1:05pm
OCF Whitepaper Working Session
See details
Hi all,
This slot worked best for all. We can shift if needed.


──────────

Andy Ruth is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/86061434382?pwd=LHNIac8qIZhNjkrTX9Be31kuFk86R7.1

Meeting agenda
https://docs.zoom.us/agenda/doc/9de08c75-de47-403c-aba5-0fd98a5fe308?from=chext

Meeting ID: 860 6143 4382
Passcode: 400367

---

One tap mobile
+12532050468,,86061434382# US
+12532158782,,86061434382# US (Tacoma)

Join instructions
https://cloudsecurityalliance.zoom.us/meetings/86061434382/invitations?signature=8bwXvwW2ZJwYa2ZqRbsT-A4mYkjOgb8YgsSbLuzl38E



──────────

Aug

20

Thu, August 20, 12:00pm - 1:05pm
OCF Whitepaper Working Session
See details
Hi all,
This slot worked best for all. We can shift if needed.


──────────

Andy Ruth is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/86061434382?pwd=LHNIac8qIZhNjkrTX9Be31kuFk86R7.1

Meeting agenda
https://docs.zoom.us/agenda/doc/9de08c75-de47-403c-aba5-0fd98a5fe308?from=chext

Meeting ID: 860 6143 4382
Passcode: 400367

---

One tap mobile
+12532050468,,86061434382# US
+12532158782,,86061434382# US (Tacoma)

Join instructions
https://cloudsecurityalliance.zoom.us/meetings/86061434382/invitations?signature=8bwXvwW2ZJwYa2ZqRbsT-A4mYkjOgb8YgsSbLuzl38E



──────────

Aug

27

Thu, August 27, 9:00am - 10:00am
Open Certification Framework WG Meeting
See details
This is an updated invite to reflect a new Zoom series and shift to twice weekly.

──────────
Andy Ruth is inviting you to a scheduled Zoom meeting.

Topic: My Meeting
Time: Feb 27, 2025 07:00 AM Pacific Time (US and Canada)
        Every 2 weeks on Thu, 79 occurrence(s)
Please download and import the following iCalendar (.ics) files to your calendar system.
Weekly: https://cloudsecurityalliance.zoom.us/meeting/tZMpdu-uqz4sGtFfmNj63YkGZ3BBC4TwQjrf/ics?icsToken=DP1T7ZxjwSd4OYVLYgAALAAAAIbIGH-sTqikUkaee5zNDnY9CJ5sHPAVcEDJR4MAqEWsc8zFUxs19NheJELiTL0ttxlMDer-sc63yFk2fDAwMDAwMQ&meetingMasterEventId=vBlZzx1SQyu_c3BRbiI00A
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/87416655605?pwd=EvaXfuiS1NobgP97n28rJ9LoHmdrxl.1

Meeting ID: 874 1665 5605
Passcode: 681158

---

One tap mobile
+12532158782,,87416655605# US (Tacoma)
+12532050468,,87416655605# US

---

Dial by your location
• +1 253 215 8782 US (Tacoma)
• +1 253 205 0468 US
• +1 720 707 2699 US (Denver)
• +1 346 248 7799 US (Houston)
• +1 669 444 9171 US
• +1 719 359 4580 US
• +1 564 217 2000 US
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 689 278 1000 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US

Meeting ID: 874 1665 5605

Find your local number: https://cloudsecurityalliance.zoom.us/u/kRTNsVD7t




──────────

Aug

27

Thu, August 27, 12:00pm - 1:05pm
OCF Whitepaper Working Session
See details
Hi all,
This slot worked best for all. We can shift if needed.


──────────

Andy Ruth is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/86061434382?pwd=LHNIac8qIZhNjkrTX9Be31kuFk86R7.1

Meeting agenda
https://docs.zoom.us/agenda/doc/9de08c75-de47-403c-aba5-0fd98a5fe308?from=chext

Meeting ID: 860 6143 4382
Passcode: 400367

---

One tap mobile
+12532050468,,86061434382# US
+12532158782,,86061434382# US (Tacoma)

Join instructions
https://cloudsecurityalliance.zoom.us/meetings/86061434382/invitations?signature=8bwXvwW2ZJwYa2ZqRbsT-A4mYkjOgb8YgsSbLuzl38E



──────────

Open Peer Reviews

Peer reviews allow security professionals from around the world to provide feedback on CSA research before it is published.

Learn how to participate in a peer review here.

AI Agents: Architecture and Control Plane

Open Until: 07/10/2026

AI agents introduce architectural and security challenges that extend beyond traditional application engineering. Their aut...

MAESTRO v2

Open Until: 07/10/2026

Agentic AI systems mark a fundamental shift from passive intelligence to active agency—autonomously perceiving, reasoning, ...

Agent Shared Security and Safety Responsibility Model (Agent 3SRM)

Open Until: 07/10/2026

As AI agents transition from experimental prototypes to production enterprise systems, the question of who is responsible f...

Integrating DNS and SDP: Enhanced Zero Trust Policy Enforcement 2.0

Open Until: 07/10/2026

The Domain Name System (DNS) is a foundational internet service and a persistent security blind spot in enterprise environm...