FedRAMP Authorization Act

5/11/2023, 3:46 PM

Summary of Bill HR 21

The FedRAMP Authorization Act, also known as Bill 117 hr 21, is a piece of legislation introduced in the US Congress. The purpose of this bill is to streamline the process for federal agencies to authorize cloud service providers for use in government operations.

The bill aims to improve the Federal Risk and Authorization Management Program (FedRAMP), which is responsible for ensuring that cloud service providers meet the necessary security standards to be used by federal agencies. By streamlining the authorization process, the bill seeks to make it easier for agencies to adopt cloud services while still maintaining high levels of security.

Some key provisions of the FedRAMP Authorization Act include requiring the General Services Administration (GSA) to establish a process for expedited authorization of cloud service providers, as well as mandating regular updates to the FedRAMP security standards to keep pace with evolving technology and threats. Overall, the FedRAMP Authorization Act is aimed at modernizing and improving the security of cloud services used by the federal government, while also making it easier for agencies to adopt these services.

Congressional Summary of HR 21

Federal Risk and Authorization Management Program Authorization Act of 2021 or the FedRAMP Authorization Act

This bill provides statutory authority for the Federal Risk and Authorization Management Program (FedRAMP) within the General Services Administration (GSA).

The GSA must establish a government-wide program that provides the authoritative standardized approach to security assessment and authorization for cloud computing products and services that process unclassified information used by agencies. Agencies must ensure that their cloud computing services meet GSA requirements.

The bill establishes the Joint Authorization Board to conduct security assessments of cloud computing services and issue provisional authorizations to operate to cloud service providers that meet FedRAMP security guidelines.

The GSA shall (1) publish a report that includes an assessment of the cost incurred by agencies and cloud service providers related to the issuance of FedRAMP authorizations and provisional authorizations, (2) determine the requirements for certification of independent assessment organizations, and (3) establish the Federal Secure Cloud Advisory Committee.

Read the Full Bill

Formatted TextPDFFormatted XML

Current Status of Bill HR 21

Bill HR 21 is currently in the status of Bill Introduced since January 4, 2021. Bill HR 21 was introduced during Congress 117 and was introduced to the House on January 4, 2021.  Bill HR 21's most recent activity was Received in the Senate and Read twice and referred to the Committee on Homeland Security and Governmental Affairs. as of January 6, 2021

Bipartisan Support of Bill HR 21

Total Number of Sponsors
1
Democrat Sponsors
1
Republican Sponsors
0
Unaffiliated Sponsors
0
Total Number of Cosponsors
4
Democrat Cosponsors
0
Republican Cosponsors
4
Unaffiliated Cosponsors
0

Policy Area and Potential Impact of Bill HR 21

Primary Policy Focus

Government Operations and Politics

Potential Impact Areas

Administrative law and regulatory proceduresAdvisory bodiesComputer security and identity theftComputers and information technologyCongressional oversightGeneral Services AdministrationGovernment employee pay, benefits, personnel managementGovernment information and archivesGovernment studies and investigationsIntergovernmental relationsInternet and video servicesInternet, web applications, social mediaPublic participation and lobbying

Alternate Title(s) of Bill HR 21

FedRAMP Authorization ActFederal Risk and Authorization Management Program Authorization Act of 2021FedRAMP Authorization ActTo enhance the innovation, security, and availability of cloud computing products and services used in the Federal Government by establishing the Federal Risk and Authorization Management Program within the General Services Administration and by establishing a risk management, authorization, and continuous monitoring process to enable the Federal Government to leverage cloud computing products and services using a risk-based approach consistent with the Federal Information Security Modernization Act of 2014 and cloud-based operations, and for other purposes.Federal Risk and Authorization Management Program Authorization Act of 2021FedRAMP Authorization ActFedRAMP Authorization ActFederal Risk and Authorization Management Program Authorization Act of 2021
Start holding our government accountable!

Comments

Sponsors and Cosponsors of HR 21

Gerald E. Connolly
Gerald E. Connolly
Virginia(Democrat)
Jody B. Hice
Jody B. Hice
Georgia(Republican)
James Comer
James Comer
Kentucky(Republican)

Latest Bills

INNOVATE Act
Bill S 853March 28, 2025
Accelerating Broadband Permits Act
Bill S 866March 28, 2025
PLAN for Broadband Act
Bill S 323March 28, 2025
Broadcast Freedom and Independence Act of 2025
Bill S 867March 28, 2025
Broadcast Freedom and Independence Act of 2025
Bill HR 1880March 28, 2025
Federal Reserve Board Abolition Act
Bill S 869March 28, 2025
Federal Reserve Board Abolition Act
Bill HR 1846March 28, 2025
Hawaii Native Species Conservation and Recovery Act of 2025
Bill S 871March 28, 2025
Hawaii Native Species Conservation and Recovery Act of 2025
Bill HR 1780March 28, 2025
GUARD Act
Bill S 851March 28, 2025
Federal Secure Cloud Improvement and Jobs Act of 2021
Bill S 3099March 8, 2023