diff --git a/features/fedramp_extensions.feature b/features/fedramp_extensions.feature index ee8fd1e33..7caf53dd3 100644 --- a/features/fedramp_extensions.feature +++ b/features/fedramp_extensions.feature @@ -21,6 +21,10 @@ Examples: | attachment-type-PASS.yaml | | authorization-type-FAIL.yaml | | authorization-type-PASS.yaml | + | categorization-has-correct-system-attribute-FAIL.yaml | + | categorization-has-correct-system-attribute-PASS.yaml | + | categorization-has-information-type-id-FAIL.yaml | + | categorization-has-information-type-id-PASS.yaml | | cloud-service-model-FAIL.yaml | | cloud-service-model-PASS.yaml | | component-type-FAIL.yaml | @@ -91,6 +95,8 @@ Examples: | address-type | | attachment-type | | authorization-type | + | categorization-has-correct-system-attribute | + | categorization-has-information-type-id | | cloud-service-model | | component-type | | control-implementation-status | diff --git a/src/validations/constraints/content/ssp-all-INVALID.xml b/src/validations/constraints/content/ssp-all-INVALID.xml index 6904ae83c..6ee6187dd 100644 --- a/src/validations/constraints/content/ssp-all-INVALID.xml +++ b/src/validations/constraints/content/ssp-all-INVALID.xml @@ -72,7 +72,7 @@

Contains sensitive financial data related to organizational operations.

- C.2.8.12 + high diff --git a/src/validations/constraints/fedramp-external-constraints.xml b/src/validations/constraints/fedramp-external-constraints.xml index 2680bc36c..9bc1717a1 100644 --- a/src/validations/constraints/fedramp-external-constraints.xml +++ b/src/validations/constraints/fedramp-external-constraints.xml @@ -56,6 +56,12 @@ A FedRAMP SSP must have a Separation of Duties Matrix attached. + + A FedRAMP SSP information-type categorization lacks a correct system attribute. The correct value is "https://doi.org/10.6028/NIST.SP.800-60v2r1". + + + A FedRAMP SSP information type categorization must have at least one information type identifier. + diff --git a/src/validations/constraints/unit-tests/categorization-has-correct-system-attribute-FAIL.yaml b/src/validations/constraints/unit-tests/categorization-has-correct-system-attribute-FAIL.yaml new file mode 100644 index 000000000..816fd6fd5 --- /dev/null +++ b/src/validations/constraints/unit-tests/categorization-has-correct-system-attribute-FAIL.yaml @@ -0,0 +1,9 @@ +test-case: + name: Negative Test for categorization-has-correct-system-attribute + description: >- + This test case validates the behavior of constraint + categorization-has-correct-system-attribute + content: ../content/ssp-all-INVALID.xml + expectations: + - constraint-id: categorization-has-correct-system-attribute + result: fail diff --git a/src/validations/constraints/unit-tests/categorization-has-correct-system-attribute-PASS.yaml b/src/validations/constraints/unit-tests/categorization-has-correct-system-attribute-PASS.yaml new file mode 100644 index 000000000..d6b47c346 --- /dev/null +++ b/src/validations/constraints/unit-tests/categorization-has-correct-system-attribute-PASS.yaml @@ -0,0 +1,9 @@ +test-case: + name: Positive Test for categorization-has-correct-system-attribute + description: >- + This test case validates the behavior of constraint + categorization-has-correct-system-attribute + content: ../content/ssp-all-VALID.xml + expectations: + - constraint-id: categorization-has-correct-system-attribute + result: pass diff --git a/src/validations/constraints/unit-tests/categorization-has-information-type-id-FAIL.yaml b/src/validations/constraints/unit-tests/categorization-has-information-type-id-FAIL.yaml new file mode 100644 index 000000000..c18cf74cf --- /dev/null +++ b/src/validations/constraints/unit-tests/categorization-has-information-type-id-FAIL.yaml @@ -0,0 +1,9 @@ +test-case: + name: Negative Test for categorization-has-information-type-id + description: >- + This test case validates the behavior of constraint + categorization-has-information-type-id + content: ../content/ssp-all-INVALID.xml + expectations: + - constraint-id: categorization-has-information-type-id + result: fail diff --git a/src/validations/constraints/unit-tests/categorization-has-information-type-id-PASS.yaml b/src/validations/constraints/unit-tests/categorization-has-information-type-id-PASS.yaml new file mode 100644 index 000000000..1cc8db491 --- /dev/null +++ b/src/validations/constraints/unit-tests/categorization-has-information-type-id-PASS.yaml @@ -0,0 +1,9 @@ +test-case: + name: Positive Test for categorization-has-information-type-id + description: >- + This test case validates the behavior of constraint + categorization-has-information-type-id + content: ../content/ssp-all-VALID.xml + expectations: + - constraint-id: categorization-has-information-type-id + result: pass