Access member only content, take part in discussions with comments on blogs, news and reviews and receive all the latest security industry news directly to your inbox. Join now for free.
Processing registration... Please wait.
This process can take up to a minute to complete.
A confirmation email has been sent to your email address - SUPPLIED EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @scmagazine.com.au to your white-listed senders.
Microsoft has accused Google of fudging its security credentials for its Apps for Government product, which Google claimed to be accredited under the US Federal Information Security Management Act (FISMA).
The Google Apps “Premier” platform was accredited, but its Apps for Government platform was not, the US Department of Justice found while investigating a legal dispute between Google and prospective client, the Department of the Interior (DOI).
“To be clear, in the view of the [General Services Administration] GSA, the agency that certified Google’s Google Apps Premier, Google does not have FISMA certification for Google Apps for Government,” the Justice Department said in a footnote to its court brief [PDF].
Google sued the DOI in October for allegedly not conducting a fair and open tender for a US$60 million email tender.
Google had argued that its FISMA accredited platform could meet all the department's security requirements.
Incidentally, Google gained its accreditation from the GSA last July, shortly before the administration awarded it an email systems contract.
David Howard, Microsoft's corporate vice president and deputy general counsel expressed disbelief that Google could be under the impression that accreditation for one platform covered another.
“If that were the case, then why did Google, according to the attachments in the DOJ brief, decide to file a separate FISMA application for Google Apps for Government?”
Howard picked up on a claim on Google’s Apps for Business page which states “Google Apps for Government, now with FISMA certification.”
“Google easily could have explained that it had received certification for Google Apps Premier and was in the process of seeking certification for Google Apps for Government. Instead, Google has continued to state that Google Apps for Government has FISMA certification itself,” said Howard.
Google denied it misled the court or its customers, an executive from Google’s Enterprise unit told Business Week on Monday.
“Google Apps received a FISMA security authorisation from the General Services Administration in July 2010. Google Apps for Government is the same system with enhanced security controls that go beyond FISMA requirements. As planned we’re working with GSA to continuously update our documentation with these and other additional enhancements.”
To begin commenting right away, you can log in below or register an account if you don't yet have one. Please read our guidelines on commenting. Offending posts will be removed and your access may be suspended. Abusive or obscene language will not be tolerated. The comments below do not necessarily reflect the views or opinions of SC Magazine, Haymarket Media or its employees.