PMO Releases Subnetting White Paper
NIST control SC-7 for Boundary Protection relies in large part on subnetworks (subnets), specifically subnet segmentation around “publicly accessible” components. This white paper, entitled “Subnets White Paper”, provides guidance on how NIST control SC-7 will be evaluated in documentation submitted for a FedRAMP authorization. Cloud Service Providers and Third Party Assessment Organizations can reference this white paper when developing documentation and for information on following topics:
- What are subnets and how should they be segmented,
- What constitutes “publicly accessible”, and
- FedRAMPs upcoming process to develop future guidance when applying this control to software defined networks.
For more information, read the full Subnetting white paper on FedRAMP.gov.