Back

U.S. Defense Information Systems Agency Provisional Authorization

The United States Defense Information Systems Agency (DISA) manages the evaluation and authorization of cloud services for the U.S. Department of Defense (DoD). Based on our FedRAMP Moderate authorization, DISA Cloud Service Support granted Google Cloud a DoD Impact Level 2 provisional authority to operate (P-ATO). An assessment at Impact Level 2 (IL2) allows storage or hosting of non-controlled, unclassified information as defined by the Cloud Computing Security Requirements Guide.

Google’s DISA IL2 authorization letters for Google Cloud Platform and Google Workspace are available to U.S. government customers or contractors working on behalf of a U.S. government customer upon request.

Google Cloud services that are in scope for IL2 P-ATO

Google Cloud Platform (GCP)

App Engine

BigQuery

BigQuery Data Transfer Service

Cloud Armor

Cloud AutoML Vision

Cloud AutoML Translation

Cloud AutoML Natural Language

Cloud Bigtable

Cloud Billing API

Cloud Build

Cloud CDN (Content Delivery Network)

Cloud Data Loss Prevention API

Cloud Dataflow

Cloud Datalab

Cloud Dataproc

Cloud Datastore

Cloud Debugger

Cloud Deployment Manager

Cloud DNS (Domain Name System)

Cloud Endpoints

Cloud Error Reporting

Cloud Firestore

Cloud Functions

Cloud HSM

Cloud IAM (Identity & Access Management)

Cloud Identity-Aware Proxy

Cloud IoT Core

Cloud Talent Solution

Cloud Text-to-Speech

Cloud Key Management Service

Cloud Load Balancing

Cloud Logging

Cloud Machine Learning Engine

Google Cloud Platform Marketplace

Cloud Memorystore

Cloud Console Mobile App

Cloud Natural Language API

Cloud Profiler

Cloud Pub/Sub

Cloud SDK

Cloud Security Scanner

Cloud Shell

Cloud Source Repositories

Cloud Storage Transfer Service

Cloud Console

Cloud Spanner

Cloud Speech-to-Text

Cloud SQL

Cloud Storage

Cloud Trace

Cloud Translation API

Cloud Video Intelligence API

Cloud Vision API

Compute Engine

Container Registry

Dialogflow

Google Genomics

Google Kubernetes Engine (formerly Google Container Engine)

Persistent Disk

Resource Manager

Service Consumer Management API

Service Control

Service Management API

Virtual Private Cloud (VPC)

Google Workspace editions

Google Workspace Business Starter

Google Workspace Business Standard

Google Workspace for Education

Google Workspace for Education Plus

Enterprise Plus

Google Workspace for Nonprofits

Google Workspace for Governments

Google Workspace services

Admin Console

Admin SDK

Admin Settings API

Apps Email Audit API

Calendar Resource API

Directory API (replaced Provisioning API)

Domain Shared Contacts API

Email Settings API

Enterprise License Manager API

Groups Migration API

Groups Settings

Reports API

Reseller API

Android and Chrome Device Management

Calendar

Chrome Sync (for Google Workspace for Education domains only)

Classroom

Cloud Identity (including Auto Provisioning)

Cloud Search (not including Cloud Search Platform)

Contacts

Directory Sync

Docs

Docs APIs

Apps Activity API

Calendar API

Contacts API

Drive REST API (replaced Documents List API)

Gmail REST API (replaced Email Migration API)

Sheets API

Sites API

Tasks API

Drawings

Drive

Forms

Google Workspace Security Center (for Enterprise Plus and Google Workspace for Education Plus domains only)

Gmail (including Talk)

Google Tasks

Groups for Business

Hangouts Chat (including Classic Hangouts Bot, Google Drive Bot, and Meet Bot)

Hangouts Classic

Hangouts Meet

Keep

Sheets

Sites Classic

Sites New

Slides

Vault

Relevant products & services

Cloud Data Loss Prevention

Provides fast, scalable classification and redaction for sensitive data elements like names, credit card numbers, Google Cloud credentials, and more.

VPC Service Controls

Keeps sensitive data private by defining a security perimeter around Google Cloud resources like Cloud Storage buckets, Cloud Bigtable instances, and BigQuery datasets.

Security Command Center

Prevent and detect threats in virtual machines, networks, applications, and storage from one location, and act on them before they cause damage or loss.

Google Cloud Armor

Delivers defense at scale against infrastructure and application DDoS attacks using Google’s global infrastructure and security systems.

Access Transparency

When Google Cloud administrators access your content, Access Transparency gives you near real-time logs of their actions.

Anthos

Built on Google-pioneered open source products like Kubernetes and Knative, Anthos lets you build hybrid applications, on-premises, or in the public cloud.

Cloud Key Management Service

Manage cryptographic keys for your cloud services the same way you do on-premises, to protect secrets and other sensitive data that you store in Google Cloud.

OAuth apps whitelisting - Google Workspace

Ensure that users can only grant permission to trusted applications by controlling which third-party apps are allowed to access users’ Google Workspace data.

Access Transparency - Google Workspace

Review logs of actions taken by Google staff when accessing user-generated text entered into Gmail, Docs, Sheets, Slides, and other apps.

Security Center - Google Workspace

Protect your organization with security analytics and best practice recommendations from Google. Included with Enterprise Plus.

Data Loss Prevention - Google Workspace

Scan files for sensitive content and prevent users from sharing sensitive content in Google Drive or shared drive with people outside your organization.

Alert Center - Google Workspace

Protect your organization from the latest security threats by getting real-time actionable alerts and security insights about activity in your domain.

Reference

Department of Defense Cloud Computing Security Requirements Guide

NIST 800-53

NIST 800-171

FedRAMP

Region

U.S.

Industry

Government and public sector

U.S. Defense Information Systems Agency Provisional Authorization

Google Cloud services that are in scope for IL2 P-ATO

Google Cloud Platform (GCP)

Google Workspace editions

Google Workspace services

Relevant products & services

Cloud Data Loss Prevention

VPC Service Controls

Security Command Center

Google Cloud Armor

Access Transparency

Anthos

Cloud Key Management Service

OAuth apps whitelisting - Google Workspace

Access Transparency - Google Workspace

Security Center - Google Workspace

Data Loss Prevention - Google Workspace

Alert Center - Google Workspace

Reference

Related offerings

Region

Industry