FEDRAMP
US federal FedRAMP cloud certification.
Definition
FedRAMP relies on NIST SP 800-53 baselines (Low 156 controls, Moderate 325, High 421). Authorities: Joint Authorization Board (JAB) or Agency ATO. Continuous monitoring required. Public marketplace lists 300+ authorized services. CSPs: AWS GovCloud, Azure Government, Google Cloud Gov.
Origin
Launched by OMB in 2011 ; operated by GSA and FedRAMP PMO.
Example in context
A SaaS application must obtain FedRAMP Moderate to sell to USCIS or Department of State.
Related terms
- StateRAMP — State/Local equivalent.