U.S. Department of Defense sets its cloud security guidelines
Cloud Musings
FEBRUARY 12, 2015
This distinction should also make it clear that utilizing a compliant infrastructure as a service (IaaS) or platform as a service (PaaS) at a CSP does not make the resulting offering compliant. The CSO itself has to be fully evaluated for the Federal Risk and Authorization Management Program (FedRAMP) compliance.
Let's personalize your content