[onesmalldrop]

Public clouds are separated from their gov versions, with gov versions using older, modified versions of what everyone else uses. public clouds ARE NOT fedramp compliant

[rrdharan]

This is not true. Google Cloud ‘s FedRAMP offering uses the same regions, zones and binaries and configurations as the regular public cloud offering.

Source: I work on FedRAMP compliance for GCP Databases.

[my123]

For reference, this is also the same case for AWS: https://aws.amazon.com/compliance/services-in-scope/

AWS US East-West (Northern Virginia, Ohio, Oregon, Northern California) is FedRAMP compliant at moderate impact level.

[Spooky23]

Not necessarily. Lots and lots of .gov operates in commercial clouds. Google doesn’t even have a distinct offering - just support add-ons for things like CJIS compliance. Microsoft’s footprint is a lot more complex.

Outside of the DoD space, the main distinctions between these offerings is where data can be stored and where and to what level of vetting vendor employees are.