Independent Assessment Plan¶
The Independent Assessment Plan rules explain how independent assessment services should approach the verification, validation, and attestation of a cloud service provider's own Security Decision Record on behalf of FedRAMP.
Effective Date(s) & Overall Applicability for 20x
- Required (Consolidated Rules for 2026)
- Obtain: 2026-07-04
- Maintain: 2027-01-01
- Grace Ends: 2027-05-04
Effective Date(s) & Overall Applicability for Rev5
- Required (Consolidated Rules for 2026)
- Obtain: 2027-01-01
- Maintain: 2027-08-01
- Grace Ends: 2028-02-01
- Sign-up Form: ADDME