Certifications Table of Contents

[shawndwells]

Could the full text of the control family be shown in the table of contents?

Currently:

For example: instead of AC, show Access Control.

[jenglish]

Family names are taken from the standard.yaml file. I have a fork of NIST-800-53-Standards which includes the full family name instead of the two-character codes, you can use this instead:

dependencies: standards:

• url: https://github.com/jenglish/NIST-800-53-Standards revision: master

(This also provides better formatting for the control text)

[shawndwells]

How did you generate the 800-53 YAML?

Looks like your edition of the parser.go is the same as upstream (https://github.com/jenglish/NIST-800-53-Standards/blob/master/parser.go).

We can patch the upstream parser to give the naming like yours, that way you don't have to maintain a fork.

[jenglish]

I used a quick&dirty Tcl script to extract it from the XML source from NIST. (Tcl script is not in the repo, as it uses an XML processing extension that is no longer widely available.)

The other reason for the fork is that my copy uses a nonstandard schema extension for control descriptions.