+1.3 Structure

1. Overview

1.3 Structure

C3A criteria are divided into criteria and additional criteria. Supplementary information is provided for some of the criteria. Depending on the use-case and the requirements of the cloud service customer, it can be determined which criteria and which additional criteria apply. **Criterion**: These criteria help to define concrete requirements for an autonomous use of cloud services. The set of criteria help to improve transparency and measure self-determination of cloud services. **Additional **Criterion**: **Additional criteria raise the bar on existing requirements or expand the scope of autonomy. It is up to the cloud service customers to request an additional criterion according to their digital sovereignty needs. **Supplementary Information**: Additional information on the criteria e.g. the scope, exceptions or external references.

Summary	Standard

1.1 References

1.2 Identified Requirements

1.2 Related Regulation

2. Identified Requirements

Requirements
Source	Requirement

3. Related Regulations

Regulations
Source	Regulation

BSI C3A - Criteria enabling Cloud Computing Autonomy -
Copyright by Bundesamt für Sicherheit in der Informationstechnik

C3A - Criteria enabling Cloud Computing Autonomy

Published under Creative-Commons-License CC-BY-ND 4.0 International.