Rev5 Balance Improvement Releases¶
Maintaining Rev5 Balance
Congress and OMB directed FedRAMP to modernize assessment, authorization, and continuous monitoring for federal cloud services; that work is being developed as FedRAMP 20x. FedRAMP is carefully integrating select 20x improvements into Rev5—balancing modernization with stability—to minimize disruption for existing Rev5 Authorized providers.
Mandatory Balance for Rev5¶
These policies apply directly to Rev5 cloud service offerings and are mandatory for cloud service providers to maintain their FedRAMP authorization.
Mandatory Implementation
All requirements and recommendations in these policies must be addressed by the Effective Date(s) listed in the policy.
| Policy | Effective Date(s) |
|---|---|
| FedRAMP Security Inbox | January 5, 2026 |
| Recommended Secure Configuration | March 1, 2026 |
Optional Balance for Rev5¶
These policies may be adopted by Rev5 cloud service offerings following the Rev5-specific process outlined in the policy.
Do not adopt these policies without FedRAMP review!
Providers MUST work with FedRAMP while adopting these policies, following all relevant instructions. Providers MUST NOT adopt any optional policy without a plan to address all requirements and obtain concurrence from all active agency customers.
Wide Releases¶
| Process | Overall Balance Status |
|---|---|
| Minimum Assessment Scope | Optional Wide Release begins January 12, 2026 |
| Significant Change Notifications | Optional Wide Release begins February 27, 2026 (tentative) |
Betas¶
| Process | Overall Balance Status |
|---|---|
| Authorization Data Sharing | Open Beta will run from February 2 to May 22, 2026 |
| Vulnerability Detection and Response | Open Beta will run from February 2 to May 22, 2026 |
| Collaborative Continuous Monitoring | Closed Beta will run from February 2 to May 22, 2026 |