Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

FedRAMP-high : 421 controls required (we have <10 here) #5

Open
rafael5 opened this issue Mar 23, 2019 · 1 comment
Open

FedRAMP-high : 421 controls required (we have <10 here) #5

rafael5 opened this issue Mar 23, 2019 · 1 comment

Comments

@rafael5
Copy link

rafael5 commented Mar 23, 2019

I see only a handful (<10) of controls listed here.
We need 421 controls completed to have FedRAMP-high compliance.

Who is in to do this with me?
@afeld
Copy link
Member

afeld commented Mar 24, 2019

You are totally right that this repository is only a proof-of-concept, which should probably be more clear. That said, we should not maintain these manually. The AWS compliance packages are expansive, and would be difficult to maintain in the OpenControl format by hand for their FedRAMP controls, much less all the other compliance programs they participate in.

It would be great to create the files in an automated way. Does AWS provide a machine-readable list of controls they implement, or a page/document that could be scraped? Note, this may be considered proprietary information - see #6.

@afeld afeld mentioned this issue Mar 24, 2019
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@afeld @rafael5