Aqua Security Achieves FedRAMP® High Authorization¶

Aqua Security’s Cloud Native Application Protection Platform (CNAPP) has achieved FedRAMP® High Impact Authorization, making Aqua one of the few CNAPP providers authorized at the highest level of federal cloud security c

Advisory Summary¶

Aqua Security's Cloud Native Application Protection Platform (CNAPP) has achieved FedRAMP High Impact Authorization, enabling use by U.S. federal agencies and organizations requiring this compliance level.

Affected Components and Versions¶

This applies to Aqua Security's CNAPP platform when deployed in FedRAMP-authorized environments. No specific Kubernetes components or versions are directly affected.

Why It Matters¶

Organizations operating in or supporting U.S. federal environments now have access to a FedRAMP High authorized CNAPP solution. This is relevant if you:

• Deploy workloads for U.S. federal agencies
• Operate as a cloud service provider in FedRAMP-authorized environments
• Have commercial requirements for FedRAMP High compliance

FedRAMP High is the most stringent federal cloud security authorization level, requiring enhanced controls for highly sensitive data.

What to Do¶

If you require FedRAMP High compliance for your Kubernetes security tooling:

1. Evaluate whether Aqua's CNAPP meets your cloud native security requirements
2. Review the authorization details with your compliance team
3. Contact Aqua Security for implementation guidance in FedRAMP environments

No action is required if you do not operate in FedRAMP-regulated environments or already use compliant security solutions.

Source Links¶

• Aqua Security Blog

Related Pages¶

• Parent index: Section index
• Related: Tomcat in the Crosshairs: New Research Reveals Ongoing Attacks
• Related: IngressNightmare Advisory Briefing (CVE-2025-1097, CVE-2025-1098, CVE-2025-24514, CVE-2025-1974)
• Newsletter: This Week in Kubernetes
• Evergreen reference: Kubernetes security primer