On 23 December 2022, the Authorization Management Program (FedRAMP) entered not force with grace period after it was signed into law by the US President Joe Biden on the same day. The Act was incorporated into the National Defense Authorization Act for Fiscal Year 2023 (H.R.7776). The FedRAMP represents a government program that regulates the cybersecurity certification that cloud service providers are required to obtain to manage US government data. In particular, the Act allows tools certified by FedRAMP to be used in an agency without additional verification. Further, the Act creates a cloud advisory committee with representatives from cloud services companies.
Original source