The Federal Risk and Authorization Management Program has begun to seek public comments on the updated “tailored” baseline that seeks to accelerate the authorization of low-risk, software-as-a-service cloud platforms.
FedRAMP said Thursday it will accept public feedback through July 28 with a plan to release the final version of the Tailored baseline by the end of summer 2017.
The updated FedRAMP Tailored baseline contains several changes and those include the introduction of a new policy that would allow the use of personally identifiable information for log-in purposes.
The next iteration of the baseline also includes an appendix on the continuous monitoring section, additional information on the attestation process and the baseline’s scope.
FedRAMP updated the baseline after the program’s joint authorization board and program management office reviewed at least 330 reactions during the first public comment round that concluded in April.
FedRAMP issued the updated Tailored baseline two months after it gave seven companies priority status to work with JAB to secure a provisional authority-to-operate for various cloud platforms and offerings.