The C5 (Cloud Computing Compliance Criteria Catalogue) criteria catalogue specifies minimum requirements for secure cloud computing and is primarily intended for professional cloud providers, their auditors and customers.

The C5 criteria catalogue was first published by the Federal Office for Information Security in 2016 and has since established itself successfully on the market. According to the BSI, over a dozen attestations have already been granted for national, European and global cloud providers, as well as a wide range of cloud services. Medium-sized and small providers now use the catalogue too. C5 gives cloud customers an important guide to selecting a provider. It is the foundation for putting a customer-specific system of risk management in place. C5 was completely revised in 2019 to consider the latest developments in detail and increase quality still further.

All information on the new edition C5:2020
To the previous version C5:2016