BSI C5

The Cloud Computing Compliance Criteria Catalogue (C5) is published by the German Federal Office for Information Security (BSI). It defines a baseline of 121 information-security objectives that German government, banking, and insurance procurement teams expect a cloud service to satisfy. C5 is attested by an independent auditor under ISAE 3000 / ISAE 3402-style examination.