The EU-SEC Framework
The project “European Security Certification Framework” (EU-SEC)* aims to create a European framework for certification schemes and evaluation concepts to secure cloud infrastructures. Within this framework, existing national and international certifications can co-exist. EU-SEC will improve the business value as well as the effectiveness and efficiency of existing cloud security certification schemes.
The EU-SEC framework is based on 3 core pillars integrated within a well-defined governance structure, namely:
• The multiparty recognition framework for certifications’ mutual recognition
• Continuous auditing and monitoring scheme
• Privacy Code of Conduct for GDPR compliance
The EU-SEC project supports the strategy of the European Union implementing the Digital Single Market Strategy, the European Cloud Initiative, the General Data Protection Regulation (GDPR) and it is expected to substantially contribute to the upcoming Cyber Security Act.