Back

U.S. Defense Information Systems Agency Provisional Authorization

The United States Defense Information Systems Agency (DISA) manages the evaluation and authorization of cloud services for the U.S. Department of Defense (DoD). Based on our FedRAMP Moderate authorization, DISA Cloud Service Support granted Google Cloud a DoD Impact Level 2 provisional authority to operate (P-ATO). An assessment at Impact Level 2 (IL2) allows storage or hosting of non-controlled, unclassified information as defined by the Cloud Computing Security Requirements Guide.

Google’s DISA IL2 authorization letters for Google Cloud Platform and G Suite are available to U.S. government customers or contractors working on behalf of a U.S. government customer upon request.

Google Cloud services that are in scope for IL2 P-ATO

Google Cloud Platform (GCP)

App Engine

BigQuery

BigQuery Data Transfer Service

Cloud Armor

Cloud AutoML Vision

Cloud AutoML Translation

Cloud AutoML Natural Language

Cloud Bigtable

Cloud Billing API

Cloud Build

Cloud CDN (Content Delivery Network)

Cloud Data Loss Prevention API

Cloud Dataflow

Cloud Datalab

Cloud Dataproc

Cloud Datastore

Cloud Deployment Manager

Cloud DNS (Domain Name System)

Cloud Endpoints

Cloud Firestore

Cloud Functions

Cloud HSM

Cloud IAM (Identity & Access Management)

Cloud Identity-Aware Proxy

Cloud IoT Core

Cloud Talent Solution

Cloud Text-to-Speech

Cloud Key Management Service

Cloud Load Balancing

Cloud Machine Learning Engine

Google Cloud Platform Marketplace

Cloud Memorystore

Cloud Console Mobile App

Cloud Natural Language API

Cloud Pub/Sub

Cloud SDK

Cloud Security Scanner

Cloud Shell

Cloud Source Repositories

Cloud Storage Transfer Service

Cloud Console

Cloud Spanner

Cloud Speech-to-Text

Cloud SQL

Cloud Storage

Cloud Translation API

Cloud Video Intelligence API

Cloud Vision API

Compute Engine

Container Registry

Dialogflow

Google Genomics

Google Kubernetes Engine (formerly Google Container Engine)

Persistent Disk

Resource Manager

Service Consumer Management API

Service Control

Service Management API

Stackdriver Debugger

Stackdriver Error Reporting

Stackdriver Logging

Stackdriver Profiler

Stackdriver Trace

Virtual Private Cloud (VPC)

G Suite editions

G Suite Basic

G Suite Business

G Suite for Education

G Suite Enterprise for Education

G Suite Enterprise

G Suite for Nonprofits

G Suite for Governments

G Suite services

Admin Console

Admin SDK

Admin Settings API

Apps Email Audit API

Calendar Resource API

Directory API (replaced Provisioning API)

Domain Shared Contacts API

Email Settings API

Enterprise License Manager API

Groups Migration API

Groups Settings

Reports API

Reseller API

Android and Chrome Device Management

Calendar

Chrome Sync (for G Suite for Education domains only)

Classroom

Cloud Identity (including Auto Provisioning)

Cloud Search (not including Cloud Search Platform)

Contacts

Directory Sync

Docs

Docs APIs

Apps Activity API

Calendar API

Contacts API

Drive REST API (replaced Documents List API)

Gmail REST API (replaced Email Migration API)

Sheets API

Sites API

Tasks API

Drawings

Drive

Forms

G Suite Security Center (for G Suite Enterprise and G Suite Enterprise for Education domains only)

Gmail (including Talk)

Google Tasks

Groups for Business

Hangouts Chat (including Classic Hangouts Bot, Google Drive Bot, and Meet Bot)

Hangouts Classic

Hangouts Meet

Keep

Sheets

Sites Classic

Sites New

Slides

Vault

Relevant products & services

Cloud Data Loss Prevention

Provides fast, scalable classification and redaction for sensitive data elements like names, credit card numbers, GCP credentials, and more.

VPC Service Controls

Keeps sensitive data private by defining a security perimeter around GCP resources like Cloud Storage buckets, Cloud Bigtable instances, and BigQuery datasets.

Security Command Center

Prevent and detect threats in virtual machines, networks, applications, and storage from one location, and act on them before they cause damage or loss.

Google Cloud Armor

Delivers defense at scale against infrastructure and application DDoS attacks using Google’s global infrastructure and security systems.

Access Transparency

When Google Cloud Platform administrators access your content, Access Transparency gives you near real-time logs of their actions.

Anthos

Built on Google-pioneered open source products like Kubernetes and Knative, Anthos lets you build hybrid applications, on-premises, or in the public cloud.

Key Management Service

Manage cryptographic keys for your cloud services the same way you do on-premises, to protect secrets and other sensitive data that you store in GCP.

OAuth apps whitelisting - G Suite

Ensure that users can only grant permission to trusted applications by controlling which third-party apps are allowed to access users’ G Suite data.

Access Transparency - G Suite

Review logs of actions taken by Google staff when accessing user-generated text entered into Gmail, Docs, Sheets, Slides, and other apps.

Security Center - G Suite

Protect your organization with security analytics and best practice recommendations from Google. Included with G Suite Enterprise edition.

Cloud Data Loss Prevention - G Suite

Scan files for sensitive content and prevent users from sharing sensitive content in Google Drive or shared drive with people outside your organization.

Alert Center - G Suite

Protect your organization from the latest security threats by getting real-time actionable alerts and security insights about activity in your domain.

Reference

Department of Defense Cloud Computing Security Requirements Guide

Related offerings

NIST 800-53

NIST 800-171

FedRAMP

Region

U.S.

Industry

Government and public sector