Open
Description
User Story:
As an OSCAL tools developer, in order to understand the current draft work of the NIST's design for the rules assembly and surrounding model for rules, I would like to see draft Metaschema models and relevant content examples to help highlight those changes.
Goals:
- Identify relevant content sources to use as examples (i.e., openshift, CSA) Review current approaches to defining rules to confirm minimal data fields in rules-related models #1391
- Complete draft Metaschema models for
ruleassembly within:-
component-definitions -
system-security-plans
-
- Mocked up content examples to demonstrate the updates and drive community feedback in:
- a
component-definition - a
system-security-plan
- a
- Identify any gaps in the current models to address in Review current approaches to defining rules to confirm minimal data fields in rules-related models #1391.
- consider if referencing a
rulewithout atestin a control implementation or a statement is appropriate re Prototype Metaschema models and mockup data samples #1364 (comment)
- consider if referencing a
Dependencies:
Acceptance Criteria
- Publish examples a gists or as sources in the
metaschema/examplesfolder. - All OSCAL website and readme documentation affected by the changes in this issue have been updated. Changes to the OSCAL website can be made in the docs/content directory of your branch.
- A Pull Request (PR) is submitted that fully addresses the goals of this User Story. This issue is referenced in the PR.
- The CI-CD build process runs without any reported errors on the PR. This can be confirmed by reviewing that all checks have passed in the PR.
Metadata
Metadata
Assignees
Type
Projects
Status
Needs Refinement