|
|
|
12 Feb 2010
Common Assurance Metric (CAM), a global initiative aimed at verifying the quality of security offered by cloud providers, is on the hunt for collaborators.
The newly launched consortium has tasked itself with establishing a system to help end users make “objective comparisons” between cloud providers based on the level of security they offer.
Already, 25 organisations have signed up for the project, including Google, Amazon and Microsoft, and the existing members are keen to attract more.
Further reading
Brian Honan, principal consultant at CAM member BH Consulting, said the invitation is open to any firm that wants to show how seriously it takes cloud security.
“It is a collaborative effort between stakeholders with no one firm taking the lead,” explained Honan.
“The fact we already have some recognised players on board is a good indicator of how serious the industry is about cloud security.”
The group hopes to have a framework in place for this classification system by the end of the year, said Honan, with members taking an active role in driving its adoption among third-party and internal cloud providers.
He said: “We hope members will set an example by implementing the system to make people aware that it exists and that, in turn, will encourage other organisations to take it on.”
Andy Burton, chairman of the Cloud Industry Forum (CIF), said he supports what the consortium is trying to achieve, but has reservations.
“We would want assurances that what they are trying to achieve would be certifiable, vendor agnostic and supported by a proper corporate governance model,” he said.
Val Bercovici, new chairman of the Storage Networking Industry Association’s (SNIA) Cloud Storage Initiative, said legal issues could also put people off.
Bercovici explained: “It needs to be clearly established where responsibility will fall should a [high-rating] cloud provider fail to provide the level of service this system says it does.”
Bob Tarzey, service director at market watcher Quocirca, said the project
should
help to reassure more nervous adopters of cloud-based services.
He added: “They have said upfront that these assurances will also be
applicable to internally hosted systems, which underlines the point that the
security issues are less to do with cloud computing per se, but more to do with
opening up any
computing resource to remote users.”
Related articles
In this video find out about the fast-growing Chinese vendor's plans for market domination and how the channel is its route of choice
Find out what gifts Acer has in store for partners for 2012 in this exclusive roundup of its recent conference
CRN's premier networking event is back on 17 May at the Ricoh Arena
Date: Thu 17 May 2012
Channel fighters preparing to square up once more on 24 May
Date: Thu 24 May 2012
The proliferation of endpoint devices within the enterprise has highlighted the shortcomings of one of the traditional approaches to data security
This Forrester report compares the costs and benefits of legacy email and productivity software with Google Apps
Dave discovers that rozzers are seemingly living in the technology dark ages
Mark Needham, founder of distributor Widget, argues that John Browett leaves for Apple with Dixons in better shape than when he arrived
|
|
|
Do you agree?
Have your say