1. AWS GovCloud (U.S.) Platform
Environment for Submittal Exchange®
Summary
Available on the AWS GovCloud (U.S.) Platform, Submittal Exchange® provides
a secure, centralized project document storage, process and communication
platform to meet the unique business challenges of U.S. government
construction projects.
About AWS GovCloud (U.S.)
AWS GovCloud (U.S.) is an AWS Region designed to allow U.S. government
agencies, contractors and customers to move sensitive workloads into the
cloud by addressing their specific regulatory and compliance requirements,
such as ITAR, which governs how organizations manage and store defense-
related data. Because AWS only allows U.S. users to physically and logically
access the GovCloud network, government agencies can now manage more
heavily regulated data while remaining compliant with access requirements.
To learn more about Amazon Web Services, please visit http://aws.amazon.
com/govcloud-us/.
Key Features & Benefits of a Cloud Platform
Ease of use: As a user, you do not have to worry about maintenance or
upgrades.
Accessibility: Access data from anywhere with an Internet connection at any
time. Contractors have constant access to real-time data and information on
any project.
Security: Submittal Exchange takes security of your connection and
data seriously by adding in appropriate measures at the authentication,
authorization and network security layers.
Reliability: Computers can be damaged, lost or stolen and hardware can
fail. Since Submittal Exchange is hosted in the cloud, you can simply log into
another computer and pick up where you left off.
Scalability: Submittal Exchange is designed for organizations of all sizes. You
can easily scale from as few to as many users as you need.
Cost: Because Submittal Exchange runs in the AWS GovCloud (U.S.), there’s no
need to maintain hardware or software. By choosing our solution you won’t
need to worry about purchasing or maintaining servers or database software.
Time Savings: Duplicate entries are eliminated, and data can always be
tracked back to the source of entry via a complete audit trail.
AWS GovCloud (U.S.) Highlights
• Audited for multiple standards,
including SOC1-3 & FedRAMP
• Highly scalable, capable of processing
more than 80,000 requests per second
Submittal Exchange Specific
AWS GovCloud (U.S.) Highlights
• ASP.NET 3.5 and MySQL Database
• Hosted on Amazon EC2
• Multiple layers of redundancy for all
systems and data
• Dedicated firewalls
• 256-bit Secure Sockets Layer (SSL)
encryption
• Password-protected authentication
using encryption
page 1
2. AWS GovCloud (U.S.) Platform
Environment for Submittal Exchange®
AWS Assurance Programs
The AWS Cloud infrastructure has been designed and managed in alignment with regulations, standards and best
practices including, but not limited to:
ISO 27001
AWS is ISO 27001 certified under the International Organization for Standardization (ISO) 27001 standard. ISO 27001
is a widely-adopted global security standard that outlines the requirements for information security management
systems. It provides a systematic approach to managing company and customer information that’s based on periodic
risk assessments.
FedRAMP (SM)
AWS has achieved two Agency Authority to Operate (ATOs) under the Federal Risk and Authorization Management
Program (FedRAMP) at the Moderate impact level. FedRAMP is a government-wide program that provides a
standardized approach to security assessment, authorization and continuous monitoring for cloud products and
services.
page 2
DIACAP and FISMA
AWS enables U.S. government agencies to achieve and sustain compliance with the Federal Information Security
Management Act (FISMA). The AWS infrastructure has been evaluated by independent assessors for a variety of
government systems as part of their system owners’approval process. Numerous Federal Civilian and Department
of Defense (DoD) organizations have successfully achieved security authorizations for systems hosted on AWS in
accordance with the Risk Management Framework (RMF) process defined in NIST 800-37 and DoD Information
Assurance Certification and Accreditation Process (DIACAP).
ITAR
The AWS GovCloud (U.S.) region supports U.S. International Traffic in Arms Regulations (ITAR) compliance. As a part
of managing a comprehensive ITAR compliance program, companies subject to ITAR export regulations must control
unintended exports by restricting access to protected data to U.S. persons and restricting the physical location of that
data to the U.S.
FIPS 140-2
The Federal Information Processing Standard (FIPS) Publication 140-2 is a U.S. government security standard that
specifies the security requirements for cryptographic modules protecting sensitive information.
To learn more about the full benefits of Submittal Exchange, please visit:
www.submittalexchange.com
This document is provided for informational purposes only and the contents hereof are subject to change without notice.
Submittal Exchange is a registered trademark. Other names may be trademarks of their respective owners.
Textura® is the leading provider of collaboration and productivity tools for the construction industry. Our solutions serve all construction industry professionals across the project
www.texturacorp.com