News

Microsoft: Google Lied About Apps for Government Certification

Microsoft has accused Google of misleading users regarding government certification for its Apps for Government products, released in July 2010.

According to Google, Apps for Government is certified under the Federal Information Security Management Act (FISMA). Microsoft says otherwise, citing a Department of Justice (DoJ) brief in a Google suit against the department, in which a footnote states, "[I]t appears that Google's Google Apps for Government does not have FISMA certification."

FISMA is a 2002 law that requires agencies to certify information security processes for their IT systems, including those managed by other agencies or contractors.

The DoJ brief cites an e-mail from December in which a security officer within the General Services Administration (GSA), which issues FISMA certifications, says that Apps for Government does not have FISMA accreditation, according to the Los Angeles Times. Google did receive FISMA certification for Google Apps Premier, the brief states, but Apps for Government is a "more restrictive" version that Google is preparing to submit for FISMA certification.

Coincidentally, the GSA in December became the first federal agency to move its agencywide e-mail to the cloud, choosing Google Apps for Government.

In a blog post on Monday, David Howard, Microsoft corporate vice president and deputy general counsel, called attention to the DoJ's brief, which had been unsealed last week.

"Google can't be under the misimpression that FISMA certification for Google Apps Premier also covers Google Apps for Government," Howard wrote. "If that were the case, then why did Google, according to the attachments in the DoJ brief, decide to file a separate FISMA application for Google Apps for Government?"

In a statement, David Mihalchik, business development executive for Google Federal, responded by saying Apps for Government "is the same system with enhanced security controls that go beyond FISMA requirements," and added Google "did not mislead the court or our customers."

The dispute grows out of a suit Google filed against the Department of Interior (DoI) in October. Google had accused the DoI of favoring Microsoft's Business Productivity Online Suite (BPOS) over Google's offerings when it was considering bids for departmentwide e-mail. BPOS, a collection of cloud-based services, is still under consideration to get FISMA certification for some applications, although Microsoft's cloud infrastructure has received FISMA approval. A judge granted Google a preliminary injunction in January.

About the Author

Kevin McCaney is the managing editor of Government Computer News.

Featured

  • Broadcom Revamps VMware Partner Program Again

    Broadcom recently announced a significant update regarding its VMware Cloud Service Provider (VCSP) program, coinciding with the release of VMware Cloud Foundation (VCF) 9.0, a key component in Broadcom’s private cloud strategy.

  • Closeup of the new Copilot keyboard key

    Microsoft Updates Copilot To Add Context-Sensitive Agents to Teams, SharePoint

    Microsoft has rolled out a new public preview for collaborative "always on" agents in Microsoft 365 Copilot, bringing enhanced, context-aware tools into Teams channels, meetings, SharePoint sites, Planner workstreams and Viva Engage communities.

  • Windows 365 Cloud Apps Now Available for Public Preview

    Microsoft announced this week that Windows 365 Cloud Apps are now available for public preview. This aims to allow IT administrators to stream individual Windows applications from the cloud, removing the need to assign Cloud PCs to every user.

  • Report: Security Initiatives Can't Keep Pace with Cloud, AI Boom

    The increasingly fast adoption of hybrid, multicloud, and AI systems is easily outgrowing existing security measures, according to a recent global survey by the Cloud Security Alliance (CSA) and exposure management firm Tenable.