ISO/IEC TR 23186:2018 Information technology – cloud computing – framework of trust for processing of multi-sourced data

Summary

There are many business and technical aspects relating to the processing of multi-sourced data, but trust between cloud service users, cloud service customers and the cloud service provider(s) is a significant market issue. Cloud processing of multi-sourced data is in its early stages of development in the industry, and it is anticipated that specific customer requirements will differ and will evolve over time. Industry clouds have begun to form, and in some cases, their primary purpose is to bring multi-sourced data together from participants in specific industry or community sectors to achieve common objectives. Trust may be required in these scenarios because of regulations, agreements or policies attached to the data.

Processing of multi-sourced data will be essential to artificial intelligence applications along with machine learning on financial, transportation, energy, manufacturing, agricultural and government data. Trust in the data, in the cloud service provider(s), in the processing functions, in the outcomes and among the parties is essential to the success of these projects.

The elements of trust described in this report pertain to Personally Identifiable Information (PII), Organizational Confidential Data (OCD) or any other kind of data that can be a part of multi-sourced data.