To install click the Add extension button. That's it.

The source code for the WIKI 2 extension is being checked by specialists of the Mozilla Foundation, Google, and Apple. You could also do it yourself at any point in time.

How to transfigure the Wikipedia

Would you like Wikipedia to always look as professional and up-to-date? We have created a browser extension. It will enhance any encyclopedic page you visit with the magic of the WIKI 2 technology.

Try it — you can delete it anytime.

Install in 5 seconds
4,5
Kelly Slayton
Congratulations on this excellent venture… what a great idea!
Alexander Grigorievskiy
I use WIKI 2 every day and almost forgot how the original Wikipedia looks like.
Live Statistics
English Articles
Improved in 24 Hours
Added in 24 Hours
Languages
Recent
Show all languages
What we do. Every page goes through several hundred of perfecting techniques; in live mode. Quite the same Wikipedia. Just better.
Great Wikipedia has got greater.
.
Leo
Newton
Brights
Milds

FedRAMP

From Wikipedia, the free encyclopedia

FedRAMP
Agency overview
Formed2011

The Federal Risk and Authorization Management Program (FedRAMP) is a United States federal government-wide compliance program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services.[1]

In 2011, the Office of Management and Budget (OMB) released a memorandum establishing FedRAMP "to provide a cost-effective, risk-based approach for the adoption and use of cloud services to Executive departments and agencies."[2] The General Services Administration (GSA) established the FedRAMP Program Management Office (PMO) in June 2012. The FedRAMP PMO mission is to promote the adoption of secure cloud services across the federal government by providing a standardized approach to security and risk assessment.[3] Per the OMB memorandum, any cloud services that hold federal data must be FedRAMP authorized.[4] FedRAMP prescribes the security requirements and processes that cloud service providers must follow in order for the government to use their service.

There are two ways to authorize a cloud service through FedRAMP: a Joint Authorization Board (JAB) provisional authorization (P-ATO),[5] and through individual agencies.[6]

Before the introduction of FedRAMP, individual federal agencies managed their own assessment methodologies following guidance set by the Federal Information Security Management Act of 2002.[7]

FedRAMP provides accreditation for cloud services for the various cloud offering models which are Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service, (SaaS).

YouTube Encyclopedic

  • 1/3
    Views:
    10 906
    13 812
    420
  • What is FedRAMP - Getting into Details
  • FedRAMP Process Overview
  • HOW TO GET FEDRAMP CERTIFIED IN AWS CLOUD

Transcription

Governance and applicable laws

FedRAMP is governed by different Executive Branch entities that collaborate to develop, manage, and operate the program.[8] These entities include:

There are several laws, mandates, and policies that are foundational to FedRAMP. FISMA–the Federal Information Security Modernization Act–requires that agencies authorize the information systems that they use. FedRAMP is FISMA for the cloud. The FedRAMP Policy Memo requires federal agencies to use FedRAMP when assessing, authorizing, and continuously monitoring cloud services in order to aid agencies in the authorization process as well as save government resources and eliminate duplicative efforts.[9] FedRAMP's security baselines are derived from NIST SP 800-53 (as revised) with a set of control enhancements that pertain to the unique security requirements of cloud computing.

Third-party assessment organizations

Third-party assessment organizations (3PAOs) play a critical role in the FedRAMP security assessment process, as they are the independent assessment organizations that verify cloud providers’ security implementations and provide the overall risk posture of a cloud environment for a security authorization decision.[10] Accredited by the American Association for Laboratory Accreditation (A2LA), these assessment organizations must demonstrate independence and the technical competence required to test security implementations and collect representative evidence.

FedRAMP Marketplace

The FedRAMP Marketplace provides a searchable, sortable database of Cloud Service Offerings (CSOs) that have achieved a FedRAMP designation.[11] 3PAOs, accredited auditors that can perform the FedRAMP assessment, are listed within the Marketplace. The FedRAMP Marketplace is maintained by the FedRAMP Program Management Office (PMO).[12]

See also

References

  1. ^ "FedRAMP.gov". FedRAMP.gov. 2020-03-26. Retrieved 2020-04-05.
  2. ^ "Policy memo" (PDF). www.fedramp.gov. Retrieved 2020-04-05.
  3. ^ "FedRAMP.gov". FedRAMP.gov. 2020-03-26. Retrieved 2020-04-05.
  4. ^ "Policy memo" (PDF). www.fedramp.gov. Retrieved 2020-04-05.
  5. ^ "Get Authorized: Joint Authorization Board". FedRAMP.gov. Retrieved 2020-04-05.
  6. ^ "Get Authorized: Agency Authorization". FedRAMP.gov. Retrieved 2020-04-05.
  7. ^ "DOD turns to FedRAMP and cloud brokering -- FCW". FCW. 2014-05-21. Archived from the original on 2020-10-31. Retrieved 2020-04-05.
  8. ^ "Governance". FedRAMP.gov. Retrieved 2020-04-05.
  9. ^ "Policy memo" (PDF). www.fedramp.gov. Retrieved 2020-04-05.
  10. ^ "Policy memo" (PDF). www.fedramp.gov. Retrieved 2020-04-05.
  11. ^ "The Federal Risk And Management Program Dashboard". marketplace.fedramp.gov. Retrieved 2021-07-28.
  12. ^ "Marketplace designations" (PDF). www.fedramp.gov. Retrieved 2020-04-05.

External links

This page was last edited on 4 April 2024, at 09:55
Basis of this page is in Wikipedia. Text is available under the CC BY-SA 3.0 Unported License. Non-text media are available under their specified licenses. Wikipedia® is a registered trademark of the Wikimedia Foundation, Inc. WIKI 2 is an independent company and has no affiliation with Wikimedia Foundation.
Contact WIKI 2
Introduction
Terms of Service
Privacy Policy