OpenAI available at FedRAMP Moderate
OpenAI 获得 FedRAMP Moderate 认证
OpenAI available at FedRAMP Moderate
OpenAI has achieved FedRAMP 20x Moderate authorization for ChatGPT Enterprise and API Platform, marking an important milestone in making frontier AI available to U.S. government agencies with the security, privacy, and governance expectations required for federal work.
OpenAI 的 ChatGPT Enterprise 和 API 平台已获得 FedRAMP 20x Moderate 认证。这一重要里程碑标志着美国政府机构现在能够以联邦工作所需的安全性、隐私性和治理标准,使用前沿人工智能技术。
Public servants should not have to wait for secure access to the same advanced AI capabilities transforming the rest of the economy. Agencies are already leveraging AI to expedite permitting, draft resident communications, advance frontier science, summarize complex information, support public health analysis, accelerate software development, translate services, and help employees find answers across policy and program material. This FedRAMP 20x Moderate authorization expands the set of missions that can use OpenAI’s managed products, subject to each agency’s policies and authorization decisions.
公务人员不应在获取安全访问权限方面滞后,他们理应享受到正在改变其他经济领域的先进 AI 能力。目前,各机构已开始利用 AI 来加速审批流程、起草居民通讯、推进前沿科学研究、总结复杂信息、支持公共卫生分析、加速软件开发、提供翻译服务,并帮助员工在政策和项目资料中快速查找答案。此次 FedRAMP 20x Moderate 认证扩大了可以使用 OpenAI 托管产品的任务范围,具体使用情况需遵循各机构的政策和授权决定。
Thanks to FedRAMP 20x, this milestone did not require choosing between speed and rigor. The 20x process moves authorization toward cloud-native security evidence, Key Security Indicators, automated validation, and ongoing visibility into how a cloud service offering is operated.
得益于 FedRAMP 20x,这一里程碑的达成无需在速度与严谨性之间做出妥协。20x 流程推动了授权向云原生安全证据、关键安全指标 (KSI)、自动化验证以及对云服务运营方式的持续可见性方向发展。
How we got here / 我们是如何做到的
FedRAMP 20x, announced by GSA in March 2025, created a faster path for cloud service providers to demonstrate secure configurations and practices. OpenAI’s Security and Engineering teams worked through KSI implementation, evidence collection, validation, review cycles, and assessment materials to bring ChatGPT Enterprise and API Platform through the 20x Moderate path.
美国总务署 (GSA) 于 2025 年 3 月宣布的 FedRAMP 20x 为云服务提供商展示安全配置和实践创造了一条更快捷的路径。OpenAI 的安全与工程团队通过实施 KSI、收集证据、进行验证、经历审查周期以及准备评估材料,成功使 ChatGPT Enterprise 和 API 平台通过了 20x Moderate 认证路径。
Our close collaboration with the FedRAMP team has been essential to reaching this milestone. Their partnership helped translate the promise of FedRAMP 20x into a practical, security-focused authorization path that moves at the speed modern government technology requires.
我们与 FedRAMP 团队的密切合作对于达成这一里程碑至关重要。他们的协作帮助我们将 FedRAMP 20x 的愿景转化为一条务实的、以安全为重点的授权路径,并以现代政府技术所需的速度推进。
FedRAMP Moderate Expands Government Capabilities / FedRAMP Moderate 扩展政府能力
Agencies will no longer need to choose between cutting-edge AI and trusted deployment environments. For federal agencies, FedRAMP 20x Moderate opens a clearer path to adopt OpenAI’s managed AI products for internal, operational, and mission-support use cases. Program teams can use ChatGPT Enterprise to accelerate research, drafting, translation, analysis, and knowledge work. Technical teams can use the OpenAI API to build AI features into existing systems, copilots, case management tools, and citizen service workflows. Agencies can now access our most powerful models, including GPT‑5.5, in our FedRAMP environment. Additionally, agencies can soon access their Codex Cloud environment via their FedRAMP ChatGPT Enterprise workspace and utilize the Codex app via integration with FedRAMP account management and backend infrastructure.
各机构无需再在尖端 AI 与可信部署环境之间做选择。对于联邦机构而言,FedRAMP 20x Moderate 为在内部运营和任务支持场景中采用 OpenAI 的托管 AI 产品开辟了更清晰的路径。项目团队可以使用 ChatGPT Enterprise 来加速研究、起草、翻译、分析和知识工作。技术团队可以使用 OpenAI API 将 AI 功能构建到现有系统、Copilot、案例管理工具和公民服务工作流中。各机构现在可以在我们的 FedRAMP 环境中访问我们最强大的模型,包括 GPT-5.5。此外,各机构很快就能通过其 FedRAMP ChatGPT Enterprise 工作区访问其 Codex Cloud 环境,并通过与 FedRAMP 账户管理和后端基础设施的集成来使用 Codex 应用。
For security, privacy, and procurement teams, the authorization creates reusable FedRAMP authorization data for agency review. Agencies can evaluate the cloud service offering, its Minimum Assessment Scope, shared-responsibility expectations, supported features, and supporting evidence and validation materials in OpenAI’s Trust Portal without starting from scratch.
对于安全、隐私和采购团队而言,此次授权创建了可供机构审查的可复用 FedRAMP 授权数据。各机构无需从零开始,即可在 OpenAI 的信任门户 (Trust Portal) 中评估该云服务产品、其最低评估范围、共同责任预期、支持的功能以及支持性证据和验证材料。
How to engage / 如何参与
Agencies can find ChatGPT Enterprise and API Platform in the FedRAMP Marketplace and contact OpenAI at fedramp@openai.com for package access. Agencies can engage OpenAI directly, procure through Carahsoft, OpenAI’s authorized public sector reseller, or evaluate other acquisition paths that align with their requirements. OpenAI can help agencies identify the right deployment and acquisition path; teams can use our sales form, email gov-gtm@openai.com, or work with their OpenAI account team for support.
各机构可以在 FedRAMP 市场 (FedRAMP Marketplace) 中找到 ChatGPT Enterprise 和 API 平台,并通过 fedramp@openai.com 联系 OpenAI 获取授权包访问权限。各机构可以直接与 OpenAI 接洽,通过 OpenAI 的授权公共部门经销商 Carahsoft 进行采购,或评估其他符合其要求的获取路径。OpenAI 可以帮助各机构确定合适的部署和获取路径;团队可以使用我们的销售表格、发送电子邮件至 gov-gtm@openai.com,或与他们的 OpenAI 客户团队联系以获取支持。
OpenAI will continue expanding supported features using the Significant Change Notification process, narrowing the gap between FedRAMP and commercial product experiences, and working with government customers to make frontier AI available with the controls, security, and assurance public sector missions require.
OpenAI 将继续利用“重大变更通知”(Significant Change Notification) 流程扩展支持的功能,缩小 FedRAMP 环境与商业产品体验之间的差距,并与政府客户合作,确保在公共部门任务所需的控制、安全和保障前提下提供前沿 AI 技术。