Digital Agenda for Europe
A Europe 2020 Initiative

Information Security labeling

Discussion

This document includes the proposal for a new way of evaluating the security of cloud computing services through the development of a labeling systems that provides kite marks to individual services according to the security measures the provider implements in that specific service. System assign every service with a kite marks of three letters that show the robustness of the security measures implemented regarding, respectively, confidentiality, integrity, and availability. In this way, a consumer can know before entering in negotiations with the provider if the service meets her needs regarding information security. This mechanism is new, and complementary to audits and certifications, and should be adopted in a voluntary way by cloud providers wishing to show more transparency to her users.

Interesting
9 users have voted.