Deploying a high- assurance, evidence -based and continuous certification for Cloud Service Providers.
MEDINA contributes to the European Cloud Security Certification policy, enhances the trustworthiness of cloud services thanks to the compliance with security certification schemes, cooperates with relevant stakeholders, and helps Europe prepare for the cloud security challenges of tomorrow.
Certification metrics and specification languages
Automated evidence management
Lifecycle management of certificates
Continuous compliance
Latest Blog Posts
Making it automated: the MEDINA Framework on dev
This first version of the MEDINA framework is a prototype integrating all components with the core functionalities implemented. To carry out the integration of the components, the DevOps strategies and CI/CD principles have been adopted, with a strong focus on...
Integrating an Existing Security Analysis Tool in the MEDINA Framework
MEDINA integrates different types of evidence collection tools to enable a comprehensive assessment of a cloud service’s security level. This is important for several reasons: First, security certification catalogs cover different layers including the infrastructure,...
Second Meeting with MEDINA's Expert Stakeholder Group (ESG)
The MEDINA project has assembled an Expert Stakeholder Group (ESG) to provide feedback on planned research and innovation on cloud certification. Our ESG is composed of recognized experts from academia, industry, and the standardization community. At the time of...
MEDINA deliverables published in April 2022
MEDINA has published three new deliverables in April 2022. These documents are available on the Public Deliverables page: D4.4 Methodology and tools for risk-based assessment and security control reconfiguration-v1 is dedicated to the dynamic risk-based assessment and...
MEDINA Press Release (March 2022)
MEDINA Project deploys high-assurance / digital evidence-based, continuous certification for Cloud Service Providers MEDINA is a Research and Innovation Action supported by Europe’s H2020 program, with the objective to create a Security framework to achieve a...
Making it work: the MEDINA Architecture
The main objective of MEDINA is to provide a tool for CSPs (Cloud Service Providers) that allows them the achievement of a continuous auditing and certification of Cloud Services aligned to the EU Cybersecurity Act, all this in an automated and almost real time...