Summary

Recommendation ITU-T X.1631 | ISO/IEC 27017 provides guidance for information security controls for cloud service customers and cloud service providers, based on ISO/IEC 27002, applicable to the provision and use of cloud services. This document provides:

–          additional guidance for relevant controls specified in ISO/IEC 27002:2022;

–          additional controls with guidance that specifically relate to cloud services.