OSCAL Compass Compliance Demo
Comprehensive demonstration comprising complete set of OSCAL documents using OSCAL Compass compliance-trestle
Presented are a complete set of OSCAL documents covering:
- 2 regulations DORA and FedRAMP (Low, Moderate, and High levels)
- 10 inventory items (6 Ubuntu VMs + 4 Kubernetes nodes)
The documents have been constructed using OSCAL Compass Compliance-trestle.
📚 OSCAL Breakdown: 5 catalogs, 3 profiles, 1 mapping-collections, 3 component definitions, 8 SSPs, 8 assessment plans, 8 assessment results, 8 POA&Ms
📚 OSCAL Catalogs and Resolved Profiles (5)
📋 OSCAL Profiles (3)
🔗 OSCAL Mapping Collections (1)
🔗 NIST SP 800-53 Rev 5 to DORA
Name: nist-800-53-rev5-to-EU-Dora
Version: 1.0
View Mapping Collection🔧 OSCAL Component Definitions (3)
📝 Note: Ubuntu uses separate component definitions for software (Ubuntu_Linux_24_04_LTS) and validation (oscap), while Kubernetes combines both software and validation components in a single definition (Kubernetes_1_28).
📄 OSCAL System Security Plans (8)
📋 OSCAL Assessment Plans (8)
📋 Kubernetes FedRAMP Moderate
Name: Kubernetes-System-ap-fedramp-moderate
Version: 1.0
View Assessment Plan🔍 OpenSCAP XCCDF Scan Results (10)
🔍 XCCDF k8s-control-01
Server: k8s-control-01
File: k8s-control-01-xccdf-results.xml
View XCCDF Results🔍 XCCDF k8s-worker-01
Server: k8s-worker-01
File: k8s-worker-01-xccdf-results.xml
View XCCDF Results🔍 XCCDF k8s-worker-02
Server: k8s-worker-02
File: k8s-worker-02-xccdf-results.xml
View XCCDF Results🔍 XCCDF k8s-worker-03
Server: k8s-worker-03
File: k8s-worker-03-xccdf-results.xml
View XCCDF Results🔍 XCCDF ubuntu-app-01
Server: ubuntu-app-01
File: ubuntu-app-01-xccdf-results.xml
View XCCDF Results🔍 XCCDF ubuntu-mgmt-01
Server: ubuntu-mgmt-01
File: ubuntu-mgmt-01-xccdf-results.xml
View XCCDF Results🔍 XCCDF ubuntu-web-01
Server: ubuntu-web-01
File: ubuntu-web-01-xccdf-results.xml
View XCCDF Results🔍 XCCDF ubuntu-web-02
Server: ubuntu-web-02
File: ubuntu-web-02-xccdf-results.xml
View XCCDF Results🔍 XCCDF ubuntu-web-03
Server: ubuntu-web-03
File: ubuntu-web-03-xccdf-results.xml
View XCCDF Results📊 OSCAL Assessment Results (8)
📊 Kubernetes FedRAMP High
Name: Kubernetes-System-ar-fedramp-high
Version: 1.0
View Assessment Results📊 Kubernetes FedRAMP Low
Name: Kubernetes-System-ar-fedramp-low
Version: 1.0
View Assessment Results📊 Kubernetes FedRAMP Moderate
Name: Kubernetes-System-ar-fedramp-moderate
Version: 1.0
View Assessment Results📊 Ubuntu FedRAMP Moderate
Name: Ubuntu-System-ar-fedramp-moderate
Version: 1.0
View Assessment Results📈 Compliance Status Charts
📊 Visual Dashboard: View all compliance status charts in one place showing control compliance across regulatory frameworks.
Available Charts: FedRAMP (Low, Moderate, High), DORA, and Cross-Regulation Comparison