Security, Trust, Assurance and Risk
STAR is the Cloud Security Alliance's public registry where cloud providers document their security posture. Level one is a self-assessment based on the CAIQ, and level two adds independent third-party certification. Customers use the registry to compare providers' security claims before signing contracts.