U.S. flag

An official website of the United States government

Archive Icon The content on this page is archived. For more up-to-date information, go to fedramp.gov.
Warning Icon

Important Notice

FedRAMP is operating mission-essential functions only due to the government shutdown. Please visit fedramp.gov/shutdown for more information.
PMO Releases Subnetting White Paper

PMO Releases Subnetting White Paper

July 18, 2022

NIST control SC-7 for Boundary Protection relies in large part on subnetworks (subnets), specifically subnet segmentation around “publicly accessible” components. This white paper, entitled “Subnets White Paper”, provides guidance on how NIST control SC-7 will be evaluated in documentation submitted for a FedRAMP authorization. Cloud Service Providers and Third Party Assessment Organizations can reference this white paper when developing documentation and for information on following topics:

  1. What are subnets and how should they be segmented,
  2. What constitutes “publicly accessible”, and
  3. FedRAMPs upcoming process to develop future guidance when applying this control to software defined networks.

For more information, read the full Subnetting white paper on FedRAMP.gov.