Compliance evidence
ISO 27017 — domain & certificate controls
Cloud service providers and their customers seeking a cloud-specific security certification overlay to ISO 27001.
Authority: International Organization for Standardization (ISO)
What ISO 27017 actually requires
ISO 27017 extends ISO 27001 with cloud-specific controls. It adds 7 new controls and clarifies implementation of 37 existing ISO 27002 controls for cloud contexts. TLS certificate management appears in the cryptography-adjacent cloud-provider responsibilities.
Full name: ISO/IEC 27017:2015 Cloud Security.
Controls that touch certificates and domains
These are the 2 controls most directly affected by TLS certificate and domain lifecycle. CertRadar produces evidence bundles mapped to each.
| Control | Title | How CertRadar helps |
|---|---|---|
CLD.6.3.1 | Shared roles and responsibilities within a cloud computing environment | Clarify which party owns which certificate across the shared model. |
A.10 (adapted) | Cryptography in the cloud | Cloud-specific guidance on cert lifecycle shared between provider and tenant. |
What the evidence pack contains
CertRadar’s one-click export for ISO 27017 includes:
- Responsibility matrix (cert ownership by party)
- Cloud-tenant cert inventory
Example domains in ISO 27017 scope
Representative domains often monitored for ISO 27017 evidence. Check any of them live:
Ship the ISO 27017 evidence your auditor asks for.
CertRadar gives security, IT, and compliance teams a complete inventory of every domain and cert your company owns — plus a one-click evidence pack mapped to ISO 27017 controls. Beta in weeks. Early members get a lifetime Pro discount.
Join the waitlist