FedRAMP High impact level
E1023367
FedRAMP High impact level is the most stringent FedRAMP security categorization, applied to cloud systems whose compromise could severely affect an agency’s operations, assets, or individuals.
All labels observed (2)
| Label | Occurrences |
|---|---|
| FedRAMP High | 1 |
| FedRAMP High impact level canonical | 1 |
How this entity was disambiguated
This entity first appeared as the object of triple T13106363 — resolving that mention is where its identity was fixed. The disambiguator weighed these candidate entities and picked the highlighted one (or “None”, minting a new entity). This is how homonymy is resolved: the same surface form can point to different entities.
Target entity: FedRAMP High impact level Context triple: [FedRAMP Joint Authorization Board Provisional ATO, mayCover, FedRAMP High impact level]
-
A.
FedRAMP Moderate
FedRAMP Moderate is a U.S. federal security authorization level for cloud services that handle sensitive but unclassified data, requiring robust controls to protect confidentiality, integrity, and availability.
-
B.
FedRAMP Program Management Office
The FedRAMP Program Management Office is the federal team that oversees and manages the government-wide FedRAMP cloud security authorization program for U.S. agencies and cloud service providers.
-
C.
FedRAMP Joint Authorization Board Provisional ATO
The FedRAMP Joint Authorization Board Provisional ATO is a high-level, government-wide security authorization granted by the FedRAMP JAB that allows cloud services to be used by multiple U.S. federal agencies after meeting rigorous security and compliance standards.
-
D.
FIPS 199
FIPS 199 is a U.S. federal standard that defines security categorization levels (low, moderate, high) for information and information systems based on the potential impact of security breaches.
-
E.
NIST SP 800-171
NIST SP 800-171 is a U.S. National Institute of Standards and Technology publication that specifies security requirements for protecting Controlled Unclassified Information in non-federal information systems and organizations.
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
Target entity: FedRAMP High impact level Target entity description: FedRAMP High impact level is the most stringent FedRAMP security categorization, applied to cloud systems whose compromise could severely affect an agency’s operations, assets, or individuals.
-
A.
FedRAMP Moderate
FedRAMP Moderate is a U.S. federal security authorization level for cloud services that handle sensitive but unclassified data, requiring robust controls to protect confidentiality, integrity, and availability.
-
B.
FedRAMP Program Management Office
The FedRAMP Program Management Office is the federal team that oversees and manages the government-wide FedRAMP cloud security authorization program for U.S. agencies and cloud service providers.
-
C.
FedRAMP Joint Authorization Board Provisional ATO
The FedRAMP Joint Authorization Board Provisional ATO is a high-level, government-wide security authorization granted by the FedRAMP JAB that allows cloud services to be used by multiple U.S. federal agencies after meeting rigorous security and compliance standards.
-
D.
FIPS 199
FIPS 199 is a U.S. federal standard that defines security categorization levels (low, moderate, high) for information and information systems based on the potential impact of security breaches.
-
E.
NIST SP 800-171
NIST SP 800-171 is a U.S. National Institute of Standards and Technology publication that specifies security requirements for protecting Controlled Unclassified Information in non-federal information systems and organizations.
- F. None of above. chosen
Statements (48)
| Predicate | Object |
|---|---|
| instanceOf |
FedRAMP impact level
ⓘ
information security categorization ⓘ |
| alignedWith | NIST Risk Management Framework NERFINISHED ⓘ |
| appliesTo |
Infrastructure-as-a-Service offerings
ⓘ
Platform-as-a-Service offerings ⓘ Software-as-a-Service offerings ⓘ cloud information systems ⓘ federal information systems hosted in the cloud ⓘ |
| associatedWith |
severe adverse effect on individuals
ⓘ
severe adverse effect on organizational assets ⓘ severe adverse effect on organizational operations ⓘ |
| basedOn |
FIPS 199 security categorization
ⓘ
NIST SP 800-60 NERFINISHED ⓘ |
| definedBy | FedRAMP Program Management Office NERFINISHED ⓘ |
| governedBy |
FedRAMP High Baseline Requirements
NERFINISHED
ⓘ
FedRAMP High Security Controls Baseline document NERFINISHED ⓘ FedRAMP Security Assessment Framework NERFINISHED ⓘ |
| hasControlBaseline | FedRAMP High security control baseline GENERATED ⓘ |
| hasHigherStringencyThan |
FedRAMP Low impact level
NERFINISHED
ⓘ
FedRAMP Moderate impact level ⓘ |
| hasImpactLevel | High ⓘ |
| hasPurpose | to protect highly sensitive federal information in cloud environments ⓘ |
| hasRiskCategory | High ⓘ |
| hasStricterControlsThan |
FedRAMP Low baseline
NERFINISHED
ⓘ
FedRAMP Moderate baseline NERFINISHED ⓘ |
| partOf |
FedRAMP
NERFINISHED
ⓘ
Federal Risk and Authorization Management Program NERFINISHED ⓘ |
| requires |
authorization by a federal agency or the Joint Authorization Board
ⓘ
configuration management controls ⓘ continuous monitoring ⓘ documented security policies and procedures ⓘ encryption of data at rest ⓘ encryption of data in transit ⓘ enhanced availability protections ⓘ enhanced confidentiality protections ⓘ enhanced integrity protections ⓘ formal risk assessments ⓘ incident response capabilities ⓘ independent third-party assessment ⓘ multi-factor authentication ⓘ strong access control measures ⓘ vulnerability scanning ⓘ |
| usedBy | U.S. federal agencies NERFINISHED ⓘ |
| usedFor |
systems where loss of availability could have severe or catastrophic adverse effect
ⓘ
systems where loss of confidentiality could have severe or catastrophic adverse effect ⓘ systems where loss of integrity could have severe or catastrophic adverse effect ⓘ |
| usedInContextOf | U.S. federal cloud authorizations ⓘ |
| usesControlBaselineFrom | NIST SP 800-53 NERFINISHED ⓘ |
How these facts were elicited
The pipeline generated the facts above by prompting gpt-5.1 with this entity's name + description and the instruction below.
You are a knowledge base construction expert. Given a subject entity and a description of it, return factual statements that you know for the subject as a JSON list of dictionaries(triples), where keys must be "subject", "predicate" and "object". The number of facts may be very high, between 25 to 50 or more, for very popular subjects. For less popular subjects, the number of facts can be very low, like 5 or 10. # Requirements - If you don't know the subject at all, return an empty list. - If the subject is not a named entity, return an empty list. - Include at least one triple where predicate is "instanceOf". - Do not get too wordy. - Separate several objects into multiple triples with one object.
Subject: FedRAMP High impact level Description of subject: FedRAMP High impact level is the most stringent FedRAMP security categorization, applied to cloud systems whose compromise could severely affect an agency’s operations, assets, or individuals.
Referenced by (2)
Full triples — surface form annotated when it differs from this entity's canonical label.