OSCAL Threat Model Schema

[sunstonesecure-robert]

Project Name

threat-model-schema

Project Description

This is a schema for a Threat Model in OSCAL

Proposed Repository Name

threat-model-schema

Current Repository URL

N/A - pending move to public repo shortly

Maintainers

@suntonesecure-robert

Maintainer Requirements

• I have reviewed the community membership guidelines
• I have read the organization contributing guidelines
• I have reviewed and agree to follow the Code of Conduct

Sponsors

@vikas-agarwal76
@degenaro

Rationale

OSCAL lacks a formal threat model for defining top level concepts around modeling threats to a system or component. This lab project proposes to maintain a top level OSCAL schema for capturing the essential attributes of a Threat model that can then be used by trestle and other tooling to produce, consume and analyze threats at the organization, system, capability, or component level and define threat mitigation implementations that explicitly link to OSCAL control implementations, assessment plans and results.

[degenaro]

/vote

[git-vote]

Vote created

@degenaro has called for a vote on OSCAL Threat Model Schema (#152).

The members of the following teams have binding votes:

Team
@oscal-compass/oversight-committee-members

Non-binding votes are also appreciated as a sign of support!

How to vote

You can cast your vote by reacting to this comment. The following reactions are supported:

In favor	Against	Abstain
👍	👎	👀

Please note that voting for multiple options is not allowed and those votes won't be counted.

The vote will be open for 28days. It will pass if at least 51% of the users with binding votes vote In favor 👍. Once it's closed, results will be published here as a new comment.

[vikas-agarwal76]

/check-vote

[git-vote]

Vote status

So far 66.67% of the users with binding vote are in favor and 0.00% are against (passing threshold: 51%).

Summary

In favor	Against	Abstain	Not voted
4	0	0	2

Binding votes (4)

User	Vote	Timestamp
ancatri	In favor	2025-12-02 14:15:39.0 +00:00:00
butler54	In favor	2025-12-02 14:15:27.0 +00:00:00
degenaro	In favor	2025-12-03 12:28:58.0 +00:00:00
vikas-agarwal76	In favor	2025-12-03 12:25:31.0 +00:00:00
@yuji-watanabe-jp	Pending
@mrgadgil	Pending

[vikas-agarwal76]

This vote has already passed so we are going to move forward with this lab project request.

[git-vote]

Vote closed

The vote passed! 🎉

83.33% of the users with binding vote were in favor and 0.00% were against (passing threshold: 51%).

Summary

In favor	Against	Abstain	Not voted
5	0	0	1

Binding votes (5)

User	Vote	Timestamp
@ancatri	In favor	2025-12-02 14:15:39.0 +00:00:00
@butler54	In favor	2025-12-02 14:15:27.0 +00:00:00
@degenaro	In favor	2025-12-03 12:28:58.0 +00:00:00
@vikas-agarwal76	In favor	2025-12-03 12:25:31.0 +00:00:00
@yuji-watanabe-jp	In favor	2025-12-04 5:28:02.0 +00:00:00