Statements (37)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:FedRAMP_security_baseline
|
| gptkbp:appliesTo |
cloud service providers
|
| gptkbp:basedOn |
gptkb:NIST_SP_800-53
|
| gptkbp:complianceLevel |
moderate
|
| gptkbp:documentation |
gptkb:Plan_of_Action_and_Milestones_(POA&M)
gptkb:Security_Assessment_Plan_(SAP) gptkb:Security_Assessment_Report_(SAR) gptkb:System_Security_Plan_(SSP) |
| gptkbp:lowerAward |
gptkb:FedRAMP_High
|
| gptkbp:numberOfControls |
325
|
| gptkbp:partOf |
gptkb:FedRAMP
|
| gptkbp:protectedBy |
gptkb:Controlled_Unclassified_Information
|
| gptkbp:publishedBy |
gptkb:U.S._General_Services_Administration
|
| gptkbp:rank |
gptkb:FedRAMP_Low
|
| gptkbp:requires |
personnel security
configuration management risk assessment access control contingency planning continuous monitoring incident response procedures security training media protection annual security assessment audit and accountability authorization to operate (ATO) physical and environmental protection system and communications protection system and information integrity third-party assessment organization (3PAO) review federal agencies using cloud services with moderate impact data |
| gptkbp:securityImpactLevel |
Moderate
|
| gptkbp:usedBy |
cloud service providers seeking federal contracts
|
| gptkbp:usedFor |
cloud service authorization
|
| gptkbp:bfsParent |
gptkb:cloud.gov
|
| gptkbp:bfsLayer |
6
|
| http://www.w3.org/2000/01/rdf-schema#label |
FedRAMP Moderate
|