Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support for exporting customer responsibility data in a Component Definition instance. #1028

Open
3 tasks
iMichaela opened this issue Sep 27, 2021 · 2 comments
Open
3 tasks

Support for exporting customer responsibility data in a Component Definition instance. #1028

iMichaela opened this issue Sep 27, 2021 · 2 comments
Labels
Aged A label for issues older than 2023-01-01 closable enhancement Research User Story

Comments

@iMichaela
Copy link
Contributor

User Story:

As an OSCAL user (as system owner or vendor providing security configurations of my products, I would like to be able to identify and export in a Component Definition, the customer responsibility data.

Goals:

When generating a Component Definition, often it is important to identify that are the security configurations or the security controls the component provides and what are the customers' responsibilities. For example, a MongoDB would provide encryption for the communication, but the customer is responsible for configuring/enabling it.

Dependencies:

none

Acceptance Criteria

  • All OSCAL website and readme documentation affected by the changes in this issue have been updated. Changes to the OSCAL website can be made in the docs/content directory of your branch.
  • A Pull Request (PR) is submitted that fully addresses the goals of this User Story. This issue is referenced in the PR.
  • The CI-CD build process runs without any reported errors on the PR. This can be confirmed by reviewing that all checks have passed in the PR.

{The items above are general acceptance criteria for all User Stories. Please describe anything else that must be completed for this issue to be considered resolved.}
@david-waltermire
Copy link
Contributor

This is dependent on making progress on #722 and should be follow-on work.

@david-waltermire david-waltermire added this to the OSCAL 1.2.0 milestone Jan 21, 2022
@aj-stein-nist aj-stein-nist removed this from the v1.2.0 milestone Jul 27, 2023
@aj-stein-nist aj-stein-nist moved this from Todo to DEFINE Research Needed in NIST OSCAL Work Board Sep 26, 2023
@aj-stein-nist
Copy link
Contributor

Updating status to DEFINE Research Needed as it is already labelled as such and is part of ongoing CRM research priorities.

@Compton-US Compton-US added Aged A label for issues older than 2023-01-01 closable labels Nov 2, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Aged A label for issues older than 2023-01-01 closable enhancement Research User Story
Projects
NIST OSCAL Work Board
Status: DEFINE Research Needed
Milestone
No milestone
Development

No branches or pull requests
4 participants
@david-waltermire @iMichaela @aj-stein-nist @Compton-US