Connected clouds passing data

DIU OKs 3 secure cloud solutions

The Defense Innovation Unit has selected three Secure Cloud Management (SCM) prototypes that will help DIU give users fast, secure and controlled access to software-as-a-service apps directly over the internet.

The three solutions – from Google Cloud with partner Palo Alto Networks, Zscaler and McAfee Public Sector -- received success memos that will allow Defense Department organizations to contract with them for these SCM solutions without needing to recompete.

The prototype solutions were installed at DIU in May 2020 and then assessed by third-party organizations based on criteria developed by DIU, according to a June 1 press release.

The selected solutions leverage zero-trust principles, which will help other DOD units with their own zero-trust plans, DIU officials said. The solutions all include Secure Access Service Edge services, which are a convergence of several related network security functions with wide-area network capabilities. Zero trust principles are core to the SASE security framework.

“The solutions provide equivalent security and control to the DoD’s Cloud Access Point (CAP) while delivering real-time performance, which is critical for such things as videoconferencing and file sharing,” said John Chen, interim CIO for DIU. 

Google’s multi-cloud solution features the company’s Anthos managed application platform, Istio’s service mesh for secure service communication and Netskope for cloud security. It will allow DIU to run web services and applications across Google Cloud, Amazon Web Services and Microsoft Azure while being centrally managed from the Google Cloud Console, the company said last May when it had been selected to build a prototype.

The Zscaler Zero Trust Exchange platform includes Zscaler Private Access, a network access service that connects trusted users directly to trusted cloud applications, and Zscaler Internet Access, a secure internet gateway solution.

McAfee’s prototype features its MVISION Unified Cloud Edge solution, which integrates its next-generation secure web gateway, cloud access security broker and data loss prevention capabilities into one cloud-native platform. 

“We have seen widespread interest in our SCM effort from Services and DoD agencies that are looking for solutions to similar challenges,” said Rick Simon, contractor and DIU project lead. “These successful prototypes will give Services and agencies several independently-assessed choices, especially as they implement zero trust architectures.”

DIU said it plans to select one provider for its unique needs and will procure a long-term SCM solution through a Production Other Transaction contract. 

About the Author

Connect with the GCN staff on Twitter @GCNtech.


  • Records management: Look beyond the NARA mandates

    Pandemic tests electronic records management

    Between the rush enable more virtual collaboration, stalled digitization of archived records and managing records that reside in datasets, records management executives are sorting through new challenges.

  • boy learning at home (Travelpixs/

    Tucson’s community wireless bridges the digital divide

    The city built cell sites at government-owned facilities such as fire departments and libraries that were already connected to Tucson’s existing fiber backbone.

Stay Connected