Fedramp SSP editing workflow support.

oscal-compass / compliance-trestle

An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.

https://oscal-compass.github.io/compliance-trestle

Apache License 2.0

152 stars 56 forks source link

Fedramp SSP editing workflow support. #555

Open butler54 opened 3 years ago

butler54 commented 3 years ago

Issue description / feature objectives

As a FedRAMP SSP writer I would like the SSP generator to support (including converting to a FedRAMP compliant OSCAL SSP) the structured fields required for a control response (e.g. control origination).

Completion Criteria

butler54 commented 3 years ago

https://github.com/GSA/fedramp-automation

butler54 commented 3 years ago

Example SSP: https://github.com/GSA/fedramp-automation/blob/master/templates/ssp/json/FedRAMP-SSP-OSCAL-Template.json

butler54 commented 3 years ago

Smaller example SSP: https://github.com/usnistgov/oscal-content/blob/master/examples/ssp/json/ssp-example.json