Security and Resilience in Governmental Clouds

Citation
European Network and Information Security Agency, Security and Resilience in Governmental Clouds (Jan. 17, 2011) (http://www.enisa.europa.eu/activities/risk-management/emerging-and-future-risk/deliverables/security-and-resilience-in-governmental-clouds/at_download/fullReport full-text]).

Overview
This report identifies a decision-making model that can be used by senior management to determine how operational, legal and information security requirements, as well as budget and time constraints, can drive the identification of the cloud computing architectural solution that best suits the needs of their organisation. The main objectives of the report are:


 * to highlight the pros and cons, with regard to information security and resilience, of community, private and public cloud computing delivery models;
 * to guide public bodies in the definition of their requirements for information security and resilience when evaluating cloud computing service delivery models.

Moreover this report wants to indirectly support European Union Member States in the definition of their national cloud strategy with regards to security and resilience.