The U.S. Government's General Services Administration (GSA) has released a requirements document and RFQ (Request for Quotation) that details what is expected from cloud-computing vendors in terms of security, service level agreements, geographic location, and data ownership for "Low and Moderate Impact Cloud Computing (CC) Software as a Service (SaaS) offerings".
The RFQ includes the ground rules for being a cloud service provider to the U.S. Government.
Federal agencies will retain ownership of data and applications hosted online, and they can request full copies of data or apps at any time.
In addition, cloud services are to be multi-tenant in architecture, be able to be provisioned securely and remotely, scale elastically, reside within the continental United States, and provide visibility into resource usage.
The RFQ says cloud service level agreements must provide for at least 99.95% availability, vendors have to take steps to secure their services, and trouble tickets and order management need to be able to be done via API.
Any Virtual machine services must allow live migration of workloads from one VM to another, while Web hosting services require both Windows and Linux options.
Info Week News Article: http://www.informationweek.com/news/government/cloud-saas/showArticle.jhtml?articleID=218900541
RFQ - Request for Quotation: https://www.fbo.gov/spg/GSA/FTS/SmartBUY-Fairfax/GS00T08SBA0027/listing.html
All content is
Copyright (c) 2010 Jorgen Thelin. All rights reserved.
The opinions expressed here represent my own views and not necessarily those of my current, prior or future employer(s).
Content is provided "as-is", without any representations or warrenties of any kind.
Contents of the Weblog Feed are licensed under a Creative Commons License.