On May 10, 2011, the German Federal Office for Information Security, (the Bundesamt für Sicherheit in der Informationstechnik or “BSI”) released the final framework paper on information security issues related to cloud computing. The paper describes the minimum requirements for information security for cloud computing services. As we previously reported, in September 2010, the BSI had presented the draft framework paper which received positive reviews and constructive comments from cloud computing providers, users, associations and other stakeholders. The comments and contributions have been incorporated in the final framework paper. According to the BSI, the paper provides “Best Practices” and serves as a basis for the discussion between cloud computing service providers and cloud users. Based on the paper, concrete recommendations for companies or public authorities may be developed, including at the international level.