May 2019 Articles

FedRAMP Tips & Cues – May 29, 2019

This week, FedRAMP published one Tip and one Q&A for Cloud Service Providers(CSPs) : Cloud Service Providers (CSPs) Tip: Recently, we’ve received inquiries about the SAR review process for CSPs pursuing a JAB Provisional Authorization to Operate (P-ATO). There are a number of things that JAB Reviewers need in order to properly assess risks noted in...

FedRAMP Tips & Cues – May 15, 2019

This week, FedRAMP published several Q&A’s for Cloud Service Providers(CSPs) : Cloud Service Providers (CSPs) Here are some basic questions our FedRAMP SMEs get about FIPS 140-2 validation compliance for Multi Factor Authentication (MFA). Q: I hear FIPS-validation does not apply to One-Time-Password (OTP) authentication. Is this true or false? A: This is FALSE! You...