burakemir5d ago
Taggart

Phenomenal reporting from ProPublica. Big takeaways:

  • FedRAMP is too understaffed to be effective.
  • Microsoft never answered serious questions about its cloud security architecture.
  • Despite a damning report, Microsoft's government cloud product was approved anyway.

https://www.propublica.org/article/microsoft-cloud-fedramp-cybersecurity-government

Federal Cyber Experts Thought Microsoft’s Cloud Was “a Pile of Shit.” They Approved It Anyway.

A federal program created to protect the government against cyber threats authorized a sprawling Microsoft cloud product, despite the company’s inability to fully explain how it protects sensitive data.

ProPublica
Mar 18 at 1:03pmWeb
Show threadAdam Williams5d ago
@mttaggart We are in the "you will never get fired for choosing Microsoft" phase of things. [for those old enough to remember "you will never get fired for choosing IBM" . . . until that PS/2|OS/2 thing]