military cloud

Microsoft announces DFARS compliance for Azure Government Cloud

Changes to the Defense Federal Acquisition Regulation Supplement put yet another set of compliance requirements on cloud service providers that want to work with Department of Defense customers. CSPs have until the end of the year to meet the DFARS requirements, and Microsoft announced on April 11 that its Azure Government platform is the first to comply.

DFARS requirements were finalized in 2016 and described in the National Institute of Standards and Technology Special Publication 800-171.  Meeting the DFARS requirements will allow DOD’s partners to host Covered Defense Information  in Microsoft’s Azure Government cloud.

Microsoft Azure General Manager Tom Keane discussed the new requirements with federal employees and industry partners at a May 12 Washington Technology event, where he announced the company’s compliance.

“Partners are a rich part of our legacy and always critically important to us,” Keane told GCN in an interview after the event.  “We weren’t sure if people were interested in DFARS compliance, but this event shows that they are as we move to the cloud.”

In fact, Keane said it was one of Azure’s customers that approached Microsoft to ask to work together on meeting the DFARS mandate that started the compliance process.

“It is a great example of partnership where we worked hand in hand to understand what those requirements could mean and then have the ability to offer them to all of our customers,” Keane said. 

About the Author

Sara Friedman is a reporter/producer for GCN, covering cloud, cybersecurity and a wide range of other public-sector IT topics.

Before joining GCN, Friedman was a reporter for Gambling Compliance, where she covered state issues related to casinos, lotteries and fantasy sports. She has also written for Communications Daily and Washington Internet Daily on state telecom and cloud computing. Friedman is a graduate of Ithaca College, where she studied journalism, politics and international communications.

Friedman can be contacted at [email protected] or follow her on Twitter @SaraEFriedman.

Click here for previous articles by Friedman.


  • Records management: Look beyond the NARA mandates

    Records management is about to get harder

    New collaboration technologies ramped up in the wake of the pandemic have introduced some new challenges.

  • puzzled employee (fizkes/

    Phish Scale: Weighing the threat from email scammers

    The National Institute of Standards and Technology’s Phish Scale quantifies characteristics of phishing emails that are likely to trick users.

Stay Connected

Sign up for our newsletter.

I agree to this site's Privacy Policy.