Cloud service providers argue for ‘risk-based approach’ to prevent abuse, in response to Commerce rulemaking

Microsoft and Google Cloud are asking the Commerce Department to walk back a Trump era proposal to institute new requirements on their infrastructure-as-a-service offerings, arguing they have already instituted measures to prevent abuse and potential cyber intrusions on their platforms that satisfy stated federal objectives.

“Given the sophistication of malicious threat actors and constraints that exist, Microsoft is concerned that EO 13984 Section 1’s approach to relying on U.S. Infrastructure as a Service (IaaS) providers to verify national identity will...