U.S. flag

An official website of the United States government

Mountain background

FedRAMP® provides a standardized, reusable approach to security assessment and authorization for cloud service offerings.

Rev 5 Agency Authorization

The traditional FedRAMP Agency Authorization process is the only path to FedRAMP authorization today and it's not going away any time soon!

Learn more

20x Community Working Groups

FedRAMP 20x is building a new cloud-native approach to FedRAMP authorization with industry and entirely in public.

Participate

A new era of automation

Learn more about FedRAMP 20x

FedRAMP Changelog

FedRAMP is moving fast and updating guidance and resources regularly. In order to keep our stakeholders informed about our changes in real-time, we maintain a changelog which documents relevant administration and program updates.

View the full changelog

Most Recent Updates

DateDetails
2025-08-22RFC-0012 has been closed to public comment. All submitted comments can be reviewed on the FedRAMP Community discussion thread. (See RFC-0012 FedRAMP Continuous Vulnerability Management Standard Public Comments)
2025-08-18Added a new page with AI prioritization criteria. (See FedRAMP AI Prioritization)
2025-08-11Added new Request for Comment (See RFC-0013 SC-7 Boundary Protection Balance Improvement Release)