Digital Single Market
Digital Economy & Society

Information Security labeling

Article
This “rating detailed guide” describes how to assign a rating to an IT service through a new labeling system, based on the characteristics of the vendor and the measures it has established to assure security and resilience of the service.

File information

Publication date: 
Tuesday, 15 May, 2012
Author: 
Leet Security

This document includes the proposal for a new way of evaluating the security of cloud computing services through the development of a labeling system that provides kite marks to individual services according to the security measures the provider implements in that specific service. System assign every service with a kite marks of three letters that show the robustness of the security measures implemented regarding, respectively, confidentiality, integrity, and availability. In this way, a consumer can know before entering in negotiations with the provider if the service meets her needs regarding information security. This mechanism is new, and complementary to audits and certifications, and should be adopted in a voluntary way by cloud providers wishing to show more transparency to her users.

 

Interesting
0 users have voted.