You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
There is no information related to how to handle the adjustments to the users section as it relates to the separation of duties SSP template changes for Rev 5 doc template. This was an overhaul from rev 4 to rev 5, and we need confirmation that specific elements are still required for OSCAL. Elements which include sensitivity, privilege-level, and type.
Goals:
Understanding of how users relates to the separation of duties table, and clear guidance on how to incorporate the different props into this table/feature. If select elements are being removed, clear descriptions and an update to the OSCAL guide so the props are no longer included.
Dependencies:
Update of FedRAMP SSP OSCAL guide to capture all elements and interdependencies. Determination if the SSP doc Template, or the OSCAL Template is the definitive source of truth (which will help with base lines and other discrepancies).
A Pull Request (PR) is submitted that fully addresses the goals of this User Story. This issue is referenced in the PR.
{The items above are general acceptance criteria for all User Stories. Please describe anything else that must be completed for this issue to be considered resolved.}
Other Comments
{Add any other context about the problem here.}
The text was updated successfully, but these errors were encountered:
<p>May use <code>rlink</code> with a relative path, or embedded as <code>base64</code>.</p>
</remarks>
</resource>
This will be added to the guides. Long-term, FedRAMP is exploring potential model enhancements that would support describing the Separation of Duties in OSCAL.
We would like to suggest a slightly different approach. This approach may allow the standard to be flexible for composing the user/privilege/role/functions to support different models. FedRAMP can provide guidance in one specific way the assemblies should be created for the Separation of Duties table in the template. This will also allow FedRAMP to change its guidance without impacting the model.
Action Item
This is a ...
This relates to ...
NOTE: For issues related to the OSCAL syntax itself, please create or add to an issue in the NIST OSCAL Repository.
Describe the problem or enhancement
There is no information related to how to handle the adjustments to the users section as it relates to the separation of duties SSP template changes for Rev 5 doc template. This was an overhaul from rev 4 to rev 5, and we need confirmation that specific elements are still required for OSCAL. Elements which include sensitivity, privilege-level, and type.
Goals:
Understanding of how users relates to the separation of duties table, and clear guidance on how to incorporate the different props into this table/feature. If select elements are being removed, clear descriptions and an update to the OSCAL guide so the props are no longer included.
Dependencies:
Update of FedRAMP SSP OSCAL guide to capture all elements and interdependencies. Determination if the SSP doc Template, or the OSCAL Template is the definitive source of truth (which will help with base lines and other discrepancies).
Acceptance Criteria
{The items above are general acceptance criteria for all User Stories. Please describe anything else that must be completed for this issue to be considered resolved.}
Other Comments
{Add any other context about the problem here.}
The text was updated successfully, but these errors were encountered: