Program to Vet Cloud Service Vendors to Launch June 6
May 22, 2012
A program intended to standardize the government's security certification of cloud products and services is expected to launch June 6 with the help of nine organizations named last week.
As part of the Federal Risk and Authorization program (FedRAMP), cloud vendors must first hire these approved third-party assessment organizations, or 3PAOs, to review and validate that they've implemented minimum security standards.
Companies already providing cloud technology to agencies under the General Services Administration's Infrastructure-as-a-Service contract will be among the first to undergo an additional review and approval process by an interagency board of chief information officers. But agency CIOs will ultimately decide which products and services they will use.