Explain SCS DigiSov and Certs. How to get into compliance.#381
Conversation
- Explain the motivation for the SCS certification levels rooted in the levels of digital sovereignty. - Give a practical example how to achieve the SCS certification by running the tests. - Hints on how to get listed, why we have the HM there and how to react to failed runs. Editorial note: - This was written up in January 2025 - It was not merged, as the description how to get certified is better done separately, elsewhere - Resurrect it, as the explanation of digital sovereigtny relative to SCS certification is useful - ToDo: Drop the duplicate pieces on testing and certification process Signed-off-by: Kurt Garloff <kurt@garloff.de>
|
This is what we talked about today, @depressiveRobot It needs cleaning up:
|
Signed-off-by: Kurt Garloff <kurt@garloff.de>
|
Drop the pieces that are extra ... |
|
FYI in context of the new proposed Cloud and AI Development Act by the EU KOM they define it like this. Also see Articles §16 to §28. Defining cloud and AI sovereigntyThe Cloud and AI Development Act defines cloud and AI sovereignty comprising four assurance levels, to be used by public sector bodies based on their risk assessments. Cloud service providers can be recognised under this framework by Member States, after undergoing an audit. The four levels are: Level 1: where data is processed and stored in infrastructure located in the Union; |
Editorial note: