How CloudWATCH2 Addresses Challenges for trustworthy (multi-)Cloud-based services in the Digital Single Market

Challenge 1

Improve market understanding and market readiness of services from EC funded projects

For European industry and citizens to make the most of the digital economy we need to tackle the most challenging issues. In the cloud R&I space, these challenges include issues such as standards, transparent pricing and better uptake of new services.

European Research and Innovation (R&I) projects need to think strategically, looking at technology and pricing as part of the same equation. While challenging, interoperable cloud services play a very important role in extending the market and in bringing business benefits to both the supply and demand sides. Results from projects need to have an impact on the market if they are to become truly sustainable.

 

CloudWATCH2 will provide

  • A roadmap to transparent cloud pricing in Europe: The roadmap paints a clear picture of the current cloud landscape and considers the risk if providers do not prepare for potential regulation. This includes a set of calls for action for stakeholders including policy makers, cloud providers etc.
  • Mapping the EU cloud ecosystem of products, services and solutions emerging from EU R&I projects. This involves assessing market readiness of project outputs and provinding best practices in mitigating risks associated with open source projects which can ultimately, enable faster time-to-value and commercialisation.

 

Impact on DSM if this gap is not filled

For European industry and citizens to make the most of the digital economy we need to tackle the most challenging issues. In the cloud R&I space, these challenges include issues such as standards, transparent pricing and better uptake of new services. European Research and Innovation (R&I) projects need to think strategically, looking at technology and pricing as part of the same equation. Without this outputs of EC-funded initiatives may not have the desired impact on the DSM. Results from projects need to have an impact on the market if they are to become truly sustainable.

 


 

Challenge 2

Cloud Security Certification &Definition of Risk profiles

CloudWATCH2 is currently working on providing a set of risk profiles specifically targetting the public sector. This will include collecting requirements from public sector organiations and identifying  association of risks/threats with  counter measures. Results will contribute to CloudforEurope work in this area. A set of risk profiles will also be defined specifically for small businesses. The profiles will suggest appropriate security measures associated with different levels of risk.

In addition, the advanced security cloud standard profile formulated in CloudWATCH1 will be further refined. A Cloud Adoption Deep Dive workshop at Cloudscape 2016 will focus on cloud security and will examine in particular how projects are addressing security concerns with market requirements in mind.

 

Impact on DSM if this gap is not filled

Trust and security concerns around cloud computing will continue and adoption may not increase as rapidly as possible in these two sectors. Rational risk management practices are key to ensuring specific cases can be correctly understood and addressed. This is important for the public sector, which has needs related to their public interest function, and for European businesses, which need to become cloud leaders in the global market.

 


 

Challenge 3

Data Protection

Legal jurisdiction is another area in which transparency is required and greater trust is demanded by end users. It is becoming increasingly important for CSPs to become more aware of consumer concerns and demonstrate their contractual and technical robustness in order to become more competitive in the global marketplace with its large-scale, multi-national players. CloudWATCH2 is delivering a set of user-focussed legal recommendations and checklists in order to help companies and public authorities to better understand contractual and EU data protection legal framework. Recommendations should also be useful for cloud service providers in helping them understand user concerns

 

Impact on DSM if this gap is not filled

This activity will contribute to making the cloud more transparent to potential adopters by addressing legal aspects, and providing a set of recommendations and checklists. These legal recommendations are also highly relevant for those Cloud Service Providers (CSPs) committed to improving their service offer in view of legal and compliance concerns.

  • Further development of cloud standard profiles for interoperability and security that can facilitate the realisation of an ecosystem of interoperable services for Europe.
  • Cloud interoperability testing in an international developer-oriented and hands-on environment. Findings will be transferred into guidance documents and standards.
  • Production of cloud risk profiles and legal guides to the cloud for private and public organisations to lower barriers and ensure a trusted European cloud market.