Certified Provider Requirements


The Cloud Foundry PaaS Certification program of CloudFoundry.org Foundation (the “Foundation”) is designed to certify products and services (“offerings”) shipped including and/or using the Foundation’s software are using the software as shipped by the Foundation’s project teams in an unmodified form.

Certified products and services are expected to differentiate themselves, but only via (1) non-functional attributes (availability, customer support, etc…) and (2) functional differences based on explicitly defined plugin points within the Cloud Foundry platform architecture. Functional differences include features and functions built on top of the Cloud Foundry platform (e.g.: CF as part of a larger offering or suite of offerings).

Applicable Offerings

The certification program is designed to work across a spectrum of offering types, including (but not limited to): software distributions, distribution as part of a hardware stack, managed private PaaS / Cloud services and online PaaS services.

The certification requirements apply equally to all of these offering types, with some requirement clarification provided based on offering type.

Requirements for Certification

General Requirements

Certified offerings are required to use the exact software packaged in specific releases of each of the: Cloud Foundry Elastic Runtime and Developer CLI tool. Details for each component are noted below.

When certifying and during a verification audit, the program participant must provide the Foundation the exact release numbers for each required component.

“Use” is defined as the platform components performing the functions they are designed to perform within the architecture of the Cloud Foundry platform by the Foundation project teams. Shipping a component, but not using it for it’s intended purpose, does not meet the requirement. Similarly, shipping a component side-by side with an alternative implementation is only acceptable if the required component is the default option for users.

No feature differentiation may be added by modifying the code of the required components.


  • Exceptions to the “exact software” requirement are only allowed for bug fixes or vulnerability patches, which do not add or change any features, with the requirement that the change is sent upstream to the relevant Foundation project(s).
  • The program participant must provide a listing of all exceptions, with relevant audit trails of the fix being sent to the Foundation project(s).

Current versions of certified products and services are expected to contain versions of the required components in the form released by Foundation project teams, no older than 6 months, measured at the time of certification.

  • For online PaaS, this applies to the currently running environment. Particularly, this applies to any new customer or new application deployment within the platform.
  • For offerings that are “shipped” or dedicated to a single customer, this applies specifically to what a new customer or a customer being upgraded will receive from the program participant.

In the case of any uncertainty regarding these requirements, program participant should ask for the clarification by the Foundation via certification@cloudfoundry.org. The Foundation reserves the right to determine how these requirements are interpreted in cases where clarification is required.

Elastic Runtime

The Elastic Runtime portion of a certified offering must include the following components:

  • Cloud Controller
  • Router
  • Diego
  • Garden, using Foundation-provided Garden backends by default
  • UAA
  • Logging & Metrics

The components of the Cloud Foundry Elastic Runtime must be versions of the associated projects tested together by the Foundation’s Release Integration project team.

Today, means that the certified offering must identify a specific cf-release release version, along with the recommended associated release version for Diego and Garden.

As the Release Integration project evolves the release artifacts, the cf-release may be replaced with a similar coordinated release mechanism and numbering scheme, such as cf-deployment.

Developer CLI

Certified offerings must provide users with the official “cf” Command Line Interface (CLI) tool as the primary CLI for interacting with the Cloud Foundry Elastic Runtime platform. The CLI provided to users must be a specific released version of the by the Foundation’s CLI project team. This may be a redistribution of the released bits, or a pointer to an official download or distribution channel of the CLI project’s releases.

Updates to Requirements

The Foundation may update these requirements in accordance with its by-laws.  Future updates may include processes for initial certification, audit, or re-certification.

Generally, the Foundation will aim to undergo a review of these requirements at least annually, with the review beginning mid-year in order to give certified offerings time to meet any new requirements prior to the next certification year starting.