FedRAMP Authorized Platforms and Services (FRAPS) are cloud-based offerings that have undergone a 3PAO assessment and are FedRAMP authorized. Leveraging a FedRAMP authorized platform or service enables CSP applications to inherit certain security controls that have already achieved authorization. FRAPS offerings range from hosted server platforms to specific functionality such as event monitoring or database management. For example, Rackspace and Databank offer FedRAMP compliant hosting platforms featuring best practice security, dynamic updates, and continuous monitoring. Amazon Web Services (AWS) offers Cognito for user authentication, CloudTrail to track user activity and API usage, and Database Migration Service to migrate databases to AWS.
FRAPS offerings provide the ease of use and scalability benefits typically expected of cloud computing environments but add enhanced resiliency, security, monitoring and network services options to address FedRAMP requirements.