The Common Assurance Maturity Model (CAMM) is a global project that will allow prospective customers for cloud services to compare the compliance levels of different cloud providers. In general, a maturity model is an assessment tool for evaluating an organization's level of progress towards a goal.
The project's goal is to provide a framework that provides customers with the transparency that's necessary to validate the information assurance maturity of a third party. CAMM will use compliance and security standards and guidelines such as ISO 27001, ISO 27002, BS 25999, COBIT and Payment Card Industry Data Security Standard (PCI- DSS) to develop a series of control questions. The responses to these questions will then be evaluated and scored and published.