CIF cloud code of practice gains European Commission backing
The Cloud Industry Forum’s (CIF) code of practice for cloud service providers has been added to the European Commission’s growing list of cloud certification schemes. The move means it passes the EC’s benchmark for service security and reliability.
The Commission’s Cloud Certification Schemes List was set up as part of the European Cloud Strategy and developed by the European Union Agency for Network and Information Security (ENISA); it gives an overview of different existing certification schemes for cloud services in the region.
The scheme effectively the Commission’s way of recognising a certification’s claim to ensuring cloud contracts guarantee a certain level of security or reliability, which it hopes will assure European customers of a provider’s claims and help stimulate spending on cloud services.
“This is a major milestone for the Cloud Industry Forum and the broader cloud community. There are no dedicated cloud standards in the market, making it difficult for small business customers to identify trusted advisors,” said Alex Hilton, chief executive officer of the Cloud Industry Forum.
“We hope this recognition will encourage more users of cloud services to actively seek providers that are CIF-certified, and likewise more CSPs to seek certification. We have taken important steps in providing a foundation in what is a fast changing and, to many, a new technology sector,” Hilton said.
Other certification schemes included in the list include the Cloud Security Alliance’s attestation, certification and self assessment, EuroCloud’s Star Audit, ISO 27001 and PCI v3.
Richard Pharro, chief executive of APM Group, the Cloud Industry Forum’s certification partner, added: “The Code of Practice was first established with the aim of driving levels of accountability, capability and transparency in the Cloud industry, which are all critical to the Cloud service contract. With the adoption of Cloud within businesses progressing at an incredibly fast rate, those key tenets of Cloud delivery are as important as ever.”
“CSPs need to ensure they operate their businesses and services in a fully open and transparent manner where it is clear to their customers – existing and new – that they are trustworthy and capable of offering the services they claim to be able to offer. The CIF CoP is one of very few schemes which offers this much needed reassurance to end users regarding the organisations they choose to work with,” he added.