What is FedRAMP?

Why FedRAMP?

• FedRAMP authorization accelerates digital transformation.As a government-wide program, FedRAMP promotes the adoption of cloud services in a secure way by providing a set of security and risk assessment standards that cloud technologies must adhere to.
• 需要FedRamp授权。如果您打算在美国政府使用基于云的技术，则必须遵守FEDRAMP标准。这些批准确保了政府对技术和信息进行的宝贵投资的保护，每年达到数十亿美元。
• FedRamp授权提供了信誉。The FedRAMP authorization process is rigorous. Evaluation includes a three-step procedure. First, a security assessment is conducted, in which an agency is required to meet a standardized set of standards and controls. These standards are assessed by a variety of subject matter experts and third-party evaluators. Then, once these requirements are satisfied, the FedRAMP program grants a security authorization. Lastly, after authorization, an ongoing assessment and authorization plan is implemented so that your organization does not fall out of compliance.

The importance of FedRAMP

Prior to FedRAMP, each government agency conducted its own evaluations for cloud computing services. This often resulted in redundant, inconsistent, costly, and inefficient efforts. FedRAMP establishes a baseline set of security evaluation criteria for cloud services, creating uniform and standard guidelines and requirements for all agencies.

作为企业云网络软件的先驱和领导者，Aruba支持FedRamp的目标，即增加美国联邦政府和云服务提供商中部署的安全云解决方案的采用，可信度和一致性。

FedRamp是为美国公共部门，州和地方组织的利益而设计的。公共部门（雪橇）越来越多地将FedRamp框架应用于自己的合同和评估中，以达到标准化的安全性和合规性。在2021年上半年，启动了一项名为Stateramp的新授权计划，以正式将网络安全标准带到州和地方政府及其陪同提供者。

在更广泛的企业用例中，FedRamp和Stateramp功能通常取代了PCI，SOC2和HIPAA等行业合规计划中规定的功能。评估云计算提供商时，私营部门可以考虑此授权。

Vendors such as Aruba that are introducing products like Aruba Central to become FedRAMP authorized are committed to maintaining the highest safeguards for its data security and technology. Stringent evaluation of its platform is performed regularly to retain FedRAMP authorization.