Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Research Effort: A model is needed for customer responsibilities that does not expose the SSP. #5

Open
Compton-US opened this issue Mar 8, 2023 · 1 comment
Open

Research Effort: A model is needed for customer responsibilities that does not expose the SSP. #5

Compton-US opened this issue Mar 8, 2023 · 1 comment
Assignees
@Compton-US
Labels
Step 3 - Discovery This research effort issue has been reviewed and is on the schedule.

Comments

@Compton-US
Copy link
Contributor

Compton-US commented Mar 8, 2023
edited
Loading

OSCAL SSP authors need the ability to export content from a full SSP, suitable for customers to import into another SSP, without exposing all content of the full SSP. At a minimum, this exported content should include customer responsibility statements associated with components and control definition statements. When the SSP author uses optional syntax to define customer-consumable content about what is inherited, this content must also be included.
@Compton-US Compton-US added the Step 1 - Initiation This research effort issue requires review and consideration. label Mar 8, 2023
@Compton-US Compton-US self-assigned this Mar 8, 2023
@Compton-US Compton-US mentioned this issue Mar 8, 2023
Merged
Compton-US added a commit to Compton-US/OSCAL-DEFINE that referenced this issue Mar 8, 2023
@Compton-US
Adding content for second round of work fro CRM usnistgov#5
72ba587
@Compton-US Compton-US added Step 2 - Ready to Start The research effort issue has been reviewed and prioritized. It is ready, but not started. and removed Step 1 - Initiation This research effort issue requires review and consideration. labels Mar 9, 2023
Compton-US added a commit to Compton-US/OSCAL-DEFINE that referenced this issue Mar 9, 2023
@Compton-US
Spiral 1, Use Cases usnistgov#5
307ed99
Compton-US added a commit to Compton-US/OSCAL-DEFINE that referenced this issue Mar 9, 2023
@Compton-US
Spiral 2, Use case mapping, gap analysis usnistgov#5
e8a1193
Compton-US pushed a commit that referenced this issue Mar 9, 2023
Spiral 1, Use Cases #5 (#6)
c650b72
Compton-US pushed a commit that referenced this issue Mar 9, 2023
Spiral 2, Use case mapping, gap analysis #5 (#7)
f57ebdc
@Compton-US Compton-US added Step 3 - Discovery This research effort issue has been reviewed and is on the schedule. and removed Step 2 - Ready to Start The research effort issue has been reviewed and prioritized. It is ready, but not started. labels Mar 9, 2023
Compton-US added a commit to Compton-US/OSCAL-DEFINE that referenced this issue Mar 9, 2023
@Compton-US
Initiated spiral 3 for issue usnistgov#5
7dcb2f1
@Compton-US Compton-US mentioned this issue Mar 9, 2023
Merged
@Compton-US Compton-US pinned this issue Mar 9, 2023
@Compton-US Compton-US mentioned this issue Mar 16, 2023
Closed
@Compton-US
Copy link
Contributor Author

I have a draft started here:
https://github.com/Compton-NIST/OSCAL-DEFINE/blob/spiral-3-effort-issue-5/research-2023/effort-responsibility-sharing/2023-03-08.003.md

Compton-US pushed a commit that referenced this issue Apr 28, 2023
Export examples for responsibility model #5
b6f8bb3 
* Initiated spiral 3 for issue #5
This was referenced Apr 28, 2023
Merged
Open
Compton-US pushed a commit that referenced this issue May 1, 2023
Export examples for responsibility model #5 (#16)
55ef225 
* Initiated spiral 3 for issue #5
@Compton-US Compton-US changed the title A model is needed for customer responsibilities that does not expose the SSP. Research Effort: A model is needed for customer responsibilities that does not expose the SSP. May 1, 2023
@Compton-US Compton-US mentioned this issue May 1, 2023
Merged
@Compton-US Compton-US mentioned this issue Aug 22, 2023
Closed
@Compton-US Compton-US mentioned this issue Nov 6, 2023
Open
3 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Compton-US Compton-US

Labels
Step 3 - Discovery This research effort issue has been reviewed and is on the schedule.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@Compton-US