Cloud Computing Risk Assessment methodology available

ENISA -the European Network and Information Security Agency, working for the EU Institutions and Member States. ENISA is the EU’s response to security issues of the European Union. As such, it is the ’pacemaker’ for Information Security in Europe.
The objective is to make ENISA’s web site the European ‘hub’ for exchange of information, best practices and knowledge in the field of Information Security.

ENISA is carrying out a risk assessment of cloud computing with input from 30 experts from major companies and academic institutions. The paper should provide an assessment of key risks and their mitigation strategies in cloud computing which will allow:

  • European Policymakers to decide on research policy (to develop technologies to mitigate risks)
  • European Policymakers to decide on appropriate policy and economic incentives, legislative measures, awareness-raising initiatives etc... vis-a-vis cloud-computing technologies.
  • Business leaders to evaluate the risks of adopting such technologies and possible mitigation strategies.
  • Individuals/citizens to evaluate the cost/benefit of using the consumer version of such applications.