The Federal Risk and Authorization Management Program has pushed back from March 17 to April 24 the deadline for public comments on the proposed baseline that seeks to expedite the authorization of low-risk, software-as-a-service cloud platforms.
FedRAMP said Monday it decided to extend the public feedback period for the Tailored baseline in response to requests from agencies and industry stakeholders.
FedRAMP Tailored will cover minimum security control requirements and that cloud services could qualify for the new baseline if they meet low-security-impact requirements in the Federal Information Processing Standards 199 Publication, according to a report by Carten Cordell for Federal Times.
FedRAMP Tailored-authorized cloud services should run in an existing FedRAMP-authorized infrastructure and operate without the need to gather personally identifiable information, the report added.
