On 15 December 2022, the US Senate adopted the “National Defense Authorization Act for Fiscal Year 2023”, which includes a section that amending the Federal Risk and Authorization Management Program (FedRAMP), a government program that regulates the cybersecurity certification that cloud service providers are required to obtain to manage US government data. In particular, the Act allows tools certified by FedRAMP to be used in an agency without additional verification. Further, the Act creates a cloud advisory committee with representatives from cloud services companies.
Original source