FRR-UCM

Using Cryptographic Modules

The Using Cryptographic Modules rules clarify how providers should select and use cryptographic modules. These rules allow risk-based decisions for some services while still encouraging validated cryptographic modules whenever they are technically feasible and reasonable.

3 provider requirements across 1 subset.

CSO

Cloud Service Provider Responsibilities

These rules apply to providers for FedRAMP Certifications.

UCM-CSO-CMD
Cryptographic Module Documentation
MUST
UCM-CSO-UVM
Using Validated Cryptographic Modules
UCM-CSO-CAT
Configuration of Agency Tenants
SHOULD