RFC-0023 Rev5 Program Certifications

[pete-gov]

This RFC proposes a time-limited opportunity for cloud service providers who have already completed significant progress towards a FedRAMP Rev5 Certification but are struggling to find an agency sponsor due to budgetary constraints with agency information security programs. FedRAMP will offer program authorizations for FedRAMP Certification to cloud service offerings at Level 1-4 to cloud service providers who adopt certain optional Rev5 Balance Improvement Releases and undergo a complete independent assessment.

This was released as RFC-0023 on January 13 with a closing date of February 26, 2026:

https://www.fedramp.gov/rfcs/0023/

[pete-gov]

Please note that program authorizations in this RFC are designed specifically for cloud service providers that have already nearly completed their Rev5 journey.