Citation[]
Cloud Security Alliance, Security Guidance for Critical Areas of Focus in Cloud Computing
- Version 1 (Apr. 2009) (full-text).
- Version 2.1 (Dec. 2009) (full-text).
- Version 3 (Nov. 14, 2011) (full-text).
Overview[]
This publication is intended to help organizations around the world make informed decisions regarding if, when, and how they will adopt cloud computing services and technologies.
The third edition seeks to establish a stable, secure baseline for cloud operations. This effort provides a practical, actionable road map to managers wanting to adopt the cloud paradigm safely and securely. Domains have been rewritten to emphasize security, stability and privacy, ensuring corporate privacy in a multi-tenant environment.
In the third edition, the guidance assumes a structural maturity in parallel with multinational cloud standards development in both structure and content. Version 3 extends the content included in previous versions with practical recommendations and requirements that can be measured and audited. The authors have endeavored to present a working product that is measured and balanced between the interests of cloud providers and tenants.