FedRAMP® provides a standardized, reusable approach to security assessment and authorization for cloud service offerings.
Rev 5 Agency Authorization
The traditional FedRAMP Agency Authorization process is the only path to FedRAMP authorization today and it's not going away any time soon!
Learn more20x Community Working Groups
FedRAMP 20x is building a new cloud-native approach to FedRAMP authorization with industry and entirely in public.
ParticipateFedRAMP Changelog
FedRAMP is moving fast and updating guidance and resources regularly. In order to keep our stakeholders informed about our changes in real-time, we maintain a changelog which documents relevant administration and program updates.
View the full changelogMost Recent Updates
Date | Details |
---|---|
2025-08-22 | RFC-0012 has been closed to public comment. All submitted comments can be reviewed on the FedRAMP Community discussion thread. (See RFC-0012 FedRAMP Continuous Vulnerability Management Standard Public Comments) |
2025-08-18 | Added a new page with AI prioritization criteria. (See FedRAMP AI Prioritization) |
2025-08-11 | Added new Request for Comment (See RFC-0013 SC-7 Boundary Protection Balance Improvement Release) |