pburkholder
commented
4 years ago Hi Jeff,
Thanks for the feedback. We have more diagrams at https://diagrams.fr.cloud.gov. They are not the easiest to read so we'll be redoing them in C4/PlanUML. I also hope to opensource more of our SSP as we move to OSCAL and better differentiate what can be open and what's still sensitive.
I hope that's of some help to you.
jeffb4
onelittlebecca
It would be useful for companies attempting the FedRAMP process to get more details on cloud.gov's internal network architecture and data flow.
As an example of a question this might help answer: If I am trying to get a non-agency-hosted SaaS hosted on AWS GovCloud approved for FedRAMP Moderate, do my EC2 nodes need to send all outbound traffic through a TIC? An L7 logging proxy? NAT? Direct igw?