0
0

FedRAMP Authorization Act

5/11/2023, 3:46 PM

Summary of Bill HR 21

The FedRAMP Authorization Act, also known as Bill 117 hr 21, is a piece of legislation introduced in the US Congress. The purpose of this bill is to streamline the process for federal agencies to authorize cloud service providers for use in government operations.

The bill aims to improve the Federal Risk and Authorization Management Program (FedRAMP), which is responsible for ensuring that cloud service providers meet the necessary security standards to be used by federal agencies. By streamlining the authorization process, the bill seeks to make it easier for agencies to adopt cloud services while still maintaining high levels of security.

Some key provisions of the FedRAMP Authorization Act include requiring the General Services Administration (GSA) to establish a process for expedited authorization of cloud service providers, as well as mandating regular updates to the FedRAMP security standards to keep pace with evolving technology and threats. Overall, the FedRAMP Authorization Act is aimed at modernizing and improving the security of cloud services used by the federal government, while also making it easier for agencies to adopt these services.

Congressional Summary of HR 21

Federal Risk and Authorization Management Program Authorization Act of 2021 or the FedRAMP Authorization Act

This bill provides statutory authority for the Federal Risk and Authorization Management Program (FedRAMP) within the General Services Administration (GSA).

The GSA must establish a government-wide program that provides the authoritative standardized approach to security assessment and authorization for cloud computing products and services that process unclassified information used by agencies. Agencies must ensure that their cloud computing services meet GSA requirements.

The bill establishes the Joint Authorization Board to conduct security assessments of cloud computing services and issue provisional authorizations to operate to cloud service providers that meet FedRAMP security guidelines.

The GSA shall (1) publish a report that includes an assessment of the cost incurred by agencies and cloud service providers related to the issuance of FedRAMP authorizations and provisional authorizations, (2) determine the requirements for certification of independent assessment organizations, and (3) establish the Federal Secure Cloud Advisory Committee.

Read the Full Bill

Formatted TextPDFFormatted XML

Current Status of Bill HR 21

Bill HR 21 is currently in the status of Introduced to Senate since January 6, 2021. Bill HR 21 was introduced during Congress 117 and was introduced to the House on January 4, 2021.  Bill HR 21's most recent activity was Received in the Senate and Read twice and referred to the Committee on Homeland Security and Governmental Affairs. as of January 6, 2021

Bipartisan Support of Bill HR 21

Total Number of Sponsors
1
Democrat Sponsors
1
Republican Sponsors
0
Unaffiliated Sponsors
0
Total Number of Cosponsors
4
Democrat Cosponsors
0
Republican Cosponsors
4
Unaffiliated Cosponsors
0

Policy Area and Potential Impact of Bill HR 21

Primary Policy Focus

Government Operations and Politics

Potential Impact Areas

- Administrative law and regulatory procedures
- Advisory bodies
- Computer security and identity theft
- Computers and information technology
- Congressional oversight
- General Services Administration
- Government employee pay, benefits, personnel management
- Government information and archives
- Government studies and investigations
- Intergovernmental relations
- Internet and video services
- Internet, web applications, social media
- Public participation and lobbying

Alternate Title(s) of Bill HR 21

FedRAMP Authorization Act
Federal Risk and Authorization Management Program Authorization Act of 2021
FedRAMP Authorization Act
To enhance the innovation, security, and availability of cloud computing products and services used in the Federal Government by establishing the Federal Risk and Authorization Management Program within the General Services Administration and by establishing a risk management, authorization, and continuous monitoring process to enable the Federal Government to leverage cloud computing products and services using a risk-based approach consistent with the Federal Information Security Modernization Act of 2014 and cloud-based operations, and for other purposes.
Federal Risk and Authorization Management Program Authorization Act of 2021
FedRAMP Authorization Act
FedRAMP Authorization Act
Federal Risk and Authorization Management Program Authorization Act of 2021

Comments

Sponsors and Cosponsors of HR 21

Gerald E. Connolly
Gerald E. Connolly
VirginiaDemocrat
Jody B. Hice
Jody B. Hice
GeorgiaRepublican
James Comer
James Comer
KentuckyRepublican

Latest Bills

National Park System Long-Term Lease Investment Act
Bill HR 4931December 5, 2025
Law-Enforcement Innovate to De-Escalate Act of 2025
Bill HR 2189December 5, 2025
Moab UMTRA Project Transition Act of 2025
Bill S 1321December 5, 2025
RED TAPE Act
Bill S 148December 5, 2025
Wyoming Education Trust Modernization Act
Bill S 2273December 5, 2025
Mississippi River Basin Fishery Commission Act of 2025
Bill HR 1514December 5, 2025
Wildfire Response and Preparedness Act of 2025
Bill S 902December 5, 2025
REMOVE Act
Bill HR 4711December 5, 2025
GUARD Veterans’ Health Care Act
Bill HR 4077December 5, 2025
Holocaust Expropriated Art Recovery Act of 2025
Bill S 1884December 5, 2025
Federal Secure Cloud Improvement and Jobs Act of 2021
Bill S 3099March 8, 2023