This mod contains the root policy, the root control and common control categories. The sections are common to all platforms:
- Authentication & Access Control
- Data Security & Encryption
- Network Security
- Logging & Auditing
- Data Protection & Business Continuity
Categories provide an alternate, vendor agnostic view of controls and policies. The DMI category aligns with the Control Framework Categories, providing a view of all the controls and policies for all cloud providers - When DMI adds Azure and GCP controls to their framework, they will map to these same categories. The categories map each Turbot policy and control to a DMI Control Section.
- The top-level type is
Dunder Mifflin - The next level is the DMI Control Section name that the item belongs to:
- Dunder Mifflin > 1. Authentication & Access Control
- Dunder Mifflin > 2. Data Security & Encryption
- Dunder Mifflin > 3. Network Security
- Dunder Mifflin > 4. Logging & Auditing
- Dunder Mifflin > 5. Data Protection & Business Continuity
- The DMI categories (as well as the root
Dunder Mifflinpolicy type) should be implemented in a separatedmi-ccfmod so that they can be shared by ALL benchmarks (dmi-ccf-aws,dmi-ccf-azure, etc). This mod must be installed first.
Install and configure Turbot CLI by following this guide
The turbot compose command resolve all inclusion directives starting from 'src/turbot.yml'
turbot composeTo inspect and verify the structure of the mod use the turbot inspect command
turbot inspectRunning all tests:
turbot testRun the following command to upload the mod into the workspace defined in the local
Turbot CLI configuration file, usually located
at [user home]/.turbot/config.yml
turbot up --profile=[target workspace profile]