diff --git a/docs/ATATArchitecture.md b/docs/ATATArchitecture.md
new file mode 100644
index 00000000..e69de29b
diff --git a/docs/EdgeControls.md b/docs/EdgeControls.md
new file mode 100644
index 00000000..b9b409f6
--- /dev/null
+++ b/docs/EdgeControls.md
@@ -0,0 +1,32 @@
+# Edge Control
+This document describes the expected connections and listening services.
+
+## Transient Connections
+| Service | Direction | Ports | Protocol | Encrypted? | Ciphers      |
+| --------|-----------|-------|----------|------------|--------------|
+| Azure Container Registry  | Egress    | 443   | HTTP | Yes        | MSFT Managed |
+| DOD CRL Service | Egress | 443 | HTTP | Yes | DOD Managed | 
+| Azure Storage | Egress | 443 | HTTP | Yes | MSFT Managed| 
+| Redis | Egress | 6380 | HTTP | Yes | MSFT Managed| 
+| Postgres | Egress | 5432 | HTTP | Yes | MSFT Managed| 
+
+# Listening Ports / Services
+| Service/App | Port    | Protocol|  Encrypted? | Accessible |
+|-------------|---------|---------|------------|--------|
+| ATAT App    | 80, 443 | HTTP    | Both | Load Balancer Only 
+| ATAT Auth   | 80, 443 | HTTP    | Both | Load Balancer Only
+
+# Host List
+## Dev
+| Service| Host |
+|--------|------|
+| Redis  | cloudzero-dev-redis.redis.cache.windows.net |
+| Postgres| cloudzero-dev-sql.postgres.database.azure.com |
+| Docker Container Registry | cloudzerodevregistry.azurecr.io |
+
+## Production
+| Service | Host |
+|---------|------|
+| Redis   |      |
+| Postgres|      |
+| Docker Container Registry | |
\ No newline at end of file