amr/hermes-brain
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
cc3976fb7f792cae1423e37b6067c57efa23f288
hermes-brain/ideas/compliance/ismap.org
Hermes cc3976fb7f ideas: editorial sweep — atomization, interlinking, restructuring 
- Split competitive-analysis-2026-05.org → TOC + 9 competitor files in
  ideas/competitors/. Dropped date from filename. All competitor UUIDs
  generated, TOC keeps original UUID for backlink continuity.
- Deleted passepartout-economics.org archive (replaced by 27-node KB).
- Inlined 5 'See also' blocks into natural prose (compliance-index,
  first-mover-window, revenue-table, orders-of-magnitude-time,
  native-org-knowledge-base).
- Linked 7 orphan compliance pages back to compliance index + finished
  truncated sentences.
- Linked all 14 Agora requirement docs from topic-relevant pages
  (identity→lisp-machine-security, infrastructure→compute-marketplace,
  social-space→growth-strategy, exchange→agora-contracts, etc.).
- Linked ai-industry-impact from investment-thesis, sufficiency-flip,
  verification-appliance, effects-growth-flywheel (up from 1 to 10+ pages).
- Fixed CREATED timestamps to use git commit dates instead of today.
- Made all links absolute from root (no port inheritance).
- Removed stale agora/docs/ duplicate content.
2026-05-24 16:25:55 +00:00

26 lines
1.2 KiB
Org Mode
Raw Blame History

:PROPERTIES:
:ID: 085b76cc-4a65-4660-9c70-85aee10ca99e
:ID: auto-ismap
:CREATED: [2026-05-23 Sat]
:END:
#+title: ISMAP (Government Security Framework — Japan)
#+filetags: :passepartout:compliance:framework:ismap:
is moderate — few non-Japanese vendors target [[id:b852ec69-0fc2-435c-ae1e-6b83e49b3ca3][APPI]] specifically, and the 2022
amendments added requirements that created compliance gaps.
** ISMAP (Government Information System Security Management and Assessment Program)
Japan's government cloud security program — analogous to [[id:e6993701-3c67-49bf-82f3-06907572cbf3][FedRAMP]]. Cloud services
used by Japanese government agencies must be ISMAP-authorized. Managed by the
Digital Agency and the Information-technology Promotion Agency (IPA).
Who must comply: Cloud service providers selling to Japanese national and local
government agencies.
Why it matters: Like FedRAMP, ISMAP is a procurement gate. Authorization is
time-consuming and expensive. A [[id:3c6b0449-a8fb-5b89-b82a-34efb21ef5b5][compute marketplace]] provider with ISMAP
authorization has exclusive access to the Japanese government market. First-mover
advantage is significant — as of 2025, fewer than 100 services are ISMAP-registered.
Reference in New Issue View Git Blame Copy Permalink