roscal_lib 0.1.0

{
  "component-definition": {
    "uuid": "8223d65f-57a9-4689-8f06-2a975ae2ad72",
    "metadata": {
      "title": "Test Component Definition",
      "last-modified": "2024-02-01T13:57:28.355446-04:00",
      "version": "20231012",
      "oscal-version": "1.1.2",
      "parties": [
        {
          "uuid": "ee47836c-877c-4007-bbf3-c9d9bd805a9a",
          "type": "organization",
          "name": "Test Vendor"
        }
      ]
    },
    "components": [
      {
        "uuid": "b036a6ac-6cff-4066-92bc-74ddfd9ad6fa",
        "type": "software",
        "title": "test component 1",
        "description": "This is a software component that implements basic authentication mechanisms.",
        "responsible-roles": [
          {
            "role-id": "provider",
            "party-uuids": ["ee47836c-877c-4007-bbf3-c9d9bd805a9a"]
          }
        ],
        "control-implementations": [
          {
            "uuid": "cfcdd674-8595-4f98-a9d1-3ac70825c49f",
            "source": "#f52e1458-7a97-49fd-8189-6af6a4e7051b",
            "description": "This is a partial implementation of the SP 800-53 rev4 catalog, focusing on the control enhancement AC-2 (3).",
            "implemented-requirements": [
              {
                "uuid": "d1016df0-9b5c-4839-86cd-f9c1d113077b",
                "control-id": "ac-2.3",
                "description": "Inactive accounts are automatically disabled based on the duration specified by the duration parameter. Disabled accounts are expected to be reviewed and removed when appropriate."
              }
            ]
          },
          {
            "uuid": "22dbff65-9729-449f-9dfc-4e5fee0906de",
            "source": "#ec013e7d-e2a2-4ddb-a174-fbd9da24b0d8",
            "description": "This is a partial implementation of the FedRAMP High profile, focusing on the control enhancement AC-2 (3).",
            "implemented-requirements": [
              {
                "uuid": "65e30b37-0640-4844-9f42-b2a7ae944bb1",
                "control-id": "ac-2.3",
                "description": "An alternate narrative for FedRAMP.."
              }
            ]
          }
        ]
      }
    ],
    "back-matter": {
      "resources": [
        {
          "uuid": "f52e1458-7a97-49fd-8189-6af6a4e7051b",
          "description": "NIST Special Publication 800-53 Revision 4: Security and Privacy Controls for Federal Information Systems and Organizations",
          "rlinks": [
            {
              "href": "../../../../nist.gov/SP800-53/rev4/xml/NIST_SP-800-53_rev4_catalog.xml",
              "media-type": "application/oscal.catalog+xml"
            },
            {
              "href": "../../../../nist.gov/SP800-53/rev4/json/NIST_SP-800-53_rev4_catalog.json",
              "media-type": "application/oscal.catalog+json"
            },
            {
              "href": "../../../../nist.gov/SP800-53/rev4/yaml/NIST_SP-800-53_rev4_catalog.yaml",
              "media-type": "application/oscal.catalog+yaml"
            }
          ]
        },
        {
          "uuid": "ec013e7d-e2a2-4ddb-a174-fbd9da24b0d8",
          "description": "FedRAMP Revision 4 High Baseline Profile",
          "rlinks": [
            {
              "href": "https://raw.githubusercontent.com/GSA/fedramp-automation/master/dist/content/rev4/baselines/xml/FedRAMP_rev4_HIGH-baseline_profile.xml",
              "media-type": "application/oscal.catalog+xml"
            },
            {
              "href": "https://raw.githubusercontent.com/GSA/fedramp-automation/master/dist/content/rev4/baselines/json/FedRAMP_rev4_HIGH-baseline_profile.json",
              "media-type": "application/oscal.catalog+json"
            },
            {
              "href": "https://raw.githubusercontent.com/GSA/fedramp-automation/master/dist/content/rev4/baselines/yaml/FedRAMP_rev4_HIGH-baseline_profile.yaml",
              "media-type": "application/oscal.catalog+yaml"
            }
          ]
        }
      ]
    }
  }
}