Common Criteria Vs FedRAMP (L22b)
Common Criteria squarely targets products meant for on-prem. However, increasingly cloud services and containers are becoming increasingly becoming more and more important. Common Criteria risks of becoming slowly irrelevant if it fails to adapt to the fast changing technology movement to cloud. However, FedRAMP is the go-to certification for cloud services. How can Common Criteria assurance work with existing FedRAMP RISK assessment for cloud services? Is there a way to make Common Criteria work along with FedRAMP or leverage FedRAMP to stay relevant in the cloud era? This presentation will address these issues and possibilities.