[X] the Guide to OSCAL-based FedRAMP System Security Plans (SSP)
[X] the Guide to OSCAL-based FedRAMP Security Assessment Plans (SAP)
[X] the Guide to OSCAL-based FedRAMP Security Assessment Results (SAR)
[X] the Guide to OSCAL-based FedRAMP Plan of Action and Milestones (POA&M)
[ ] the FedRAMP SSP OSCAL Template (JSON or XML Format)
[ ] the FedRAMP SAP OSCAL Template (JSON or XML Format)
[ ] the FedRAMP SAR OSCAL Template (JSON or XML Format)
[ ] the FedRAMP POA&M OSCAL Template (JSON or XML Format)
User Story
As a FedRAMP stakeholder (CSP, 3PAO, Agency or Tool Supplier), I need clear guidance and documentation on how to represent the FedRAMP SSP, SAP, SAR, and POA&M in OSCAL, including documented requirements such as FedRAMP allowed values and other FedRAMP data constraints.
Goals
FedRAMP automation team is continuing to work towards publishing HTML versions of the OSCAL guides to replace the current PDF versions. The goal of this issue to address prioritized items for the launch of https;//automate.fedramp.gov in the summer of 2024. These include issues 2 through 17 (see https://github.com/GSA/automate.fedramp.gov/issues).
This is a ...
improvement - something could be better
This relates to ...
User Story
As a FedRAMP stakeholder (CSP, 3PAO, Agency or Tool Supplier), I need clear guidance and documentation on how to represent the FedRAMP SSP, SAP, SAR, and POA&M in OSCAL, including documented requirements such as FedRAMP allowed values and other FedRAMP data constraints.
Goals
FedRAMP automation team is continuing to work towards publishing HTML versions of the OSCAL guides to replace the current PDF versions. The goal of this issue to address prioritized items for the launch of https;//automate.fedramp.gov in the summer of 2024. These include issues 2 through 17 (see https://github.com/GSA/automate.fedramp.gov/issues).
Dependencies
No response
Acceptance Criteria
Other information
No response