DOME certification baseline
DOME marketplace will foster the adherence to the upcoming Cloud Rule Book. The EU Cloud Rulebook is envisioned as a "light" regulation with no strict obligation (based on voluntary adoption) and issued as a "Recommendation" but the Member States will have the power to enforce it in their jurisdictions, if they wish, or even make compulsory a subset or a superset of it . For more details please refer to the Cloud Rule Book.
Consistent to this approach, the DOME certification compliance functionality will allow the services providers to check which certification they own and to allow the customers to search/filter the catalog upon the kind of qualification they aim to achieve. In the EU Cloud Rulebook it is expected to have different compliance levels, i.e. Level 1, Level 2, Level 3. Similarly, DOME will also support the labeling strategy initially into 3 categories based on the number of verified certifications (from the supported ones). The services will be tagged (by different colors) accordingly into these categories: Red - Level 1 (No verified certifications), Yellow Level 2 - (Some supported certifications verified), and Green - Level 3 (All the certifications have been verified by a Certification Body accepted in DOME).
For the first version of the platform the certifications supported are the green ones in the following table :
Characteristic / Tag to be included for each service:
DOME Level 1 - No verified certifications provided/achieved
DOME Level 2 - Some supported certifications have been verified
DOME Level 3 - All the supported certifications have been verified by DOME
-
VERIFIED (Certification validation passed)
- IN VALIDATION (Evidences provided to the DOME Trusted Certification Authority which is in the process of validating them)
-
SELF-DECLARED (self-declaration of certification compliance, there is no assurance from DOME about the validity)
-
EXPIRED or NOT VALID (expired or not valid certificate)
-
NOT REQUIRED (no evidences provided)
No Comments