The platform for continuous compliance assessment and assurance evaluation of cloud, IoT, and traditional IT applications/infrastructures.
It enables infrastructure/application owners to have a complete verification of their services during operation. Though generic, it mainly targets security and performance assurance.
Security and performance often depend on layers that are neither visible nor accessible. Opacity reduces users’ trust in Cloud, IT, and IoT systems.
Moon Cloud is a non-intrusive platform for compliance assessment and assurance evaluation that brings transparency to the whole ICT infrastucture. Like moonlight it lets you see through the cloud without dissipating it like sunlight would do
Cloud security: a way to actively protect assets (data and applications) by internal and external threats and attacks, to provide an environment where customers interact in a secure way.
Cloud security assurance: the way to gain justifiable confidence that infrastructure and/or applications will consistently demonstrate one or more security properties, and operationally behave as expected.
Security includes mechanisms necessary to provide a given security property (e.g., encryption, access control…)
The notion of assurance instead complements the one of security by providing methodologies for collecting and analyzing evidence that can prove or refute security properties (e.g., audit, certification, compliance techniques...).
Template-based customization that can be easily adapted to customers’ needs, evidence-based compliance assurance.
Moon Cloud offers a platform allowing full customization of compliance and assurance as a service.
The evaluation deeply inspects all the aspects affecting the system. A deep dive in the hidden part of the security and performance iceberg.
Third-party monitoring and testing tools, existing certification and compliance solutions can be easily integrated within Moon Cloud.
Assurance and compliance are guaranteed via non-invasive continuous monitoring and testing.
Secure collection of monitoring evidence via non tamperable probes.