[Global_industry_committee] Opportunity to comment: US FedRAMP

Rex Booth rex.booth at owasp.org
Wed Dec 15 11:12:55 EST 2010


Is this on our radar screen yet?

FedRAMP is a program under development within the US Federal sector that 
will allow cloud-oriented services and applications to undergo the 
certification and accreditation process (now called Assessment and 
Authorization) once for the entire Federal government instead of once 
per agency.  There's a lot of buzz about this among private sector 
companies and within the agencies.

OWASP can contribute by reviewing the attached draft plan which includes 
details of the process as well as descriptions of the additional 
controls expected for cloud services.  Comments are due January 17, so 
this is a relatively tight turn-around.

I'd like to kick this off as a GIC project.  Any thoughts or objections?

-------------- next part --------------
A non-text attachment was scrubbed...
Name: FedRamp+Documents.pdf
Type: application/pdf
Size: 884365 bytes
Desc: not available
Url : https://lists.owasp.org/pipermail/global_industry_committee/attachments/20101215/108847c9/attachment-0001.pdf 

More information about the Global_industry_committee mailing list