In order to maintain and revise data.gov's compliance materials with minimal fuss, we store all artifacts as text (eg Markdown, PlantUML, OSCAL) and generate materials for consumption by downstream entities in the assessment and authorization process.
This repository initially contains overall system architecture descriptions and diagrams corresponding to sections 1-12 of a typical System Security Plan (SSP) document. See the index for instructions.
The source for other things (OSCAL for control descriptions, evidence generation scripts, etc) will appear here over time.
These plugins may be helpful for editing diagrams.
- (vscode) https://marketplace.visualstudio.com/items?itemName=jebbs.plantuml
- (vim) https://github.com/weirongxu/plantuml-previewer.vim
- (vim) https://github.com/aklt/plantuml-syntax
See CONTRIBUTING for additional information.
This project is in the worldwide public domain. As stated in CONTRIBUTING:
This project is in the public domain within the United States, and copyright and related rights in the work worldwide are waived through the CC0 1.0 Universal public domain dedication.
All contributions to this project will be released under the CC0 dedication. By submitting a pull request, you are agreeing to comply with this waiver of copyright interest.