compliance-trestle
compliance-trestle copied to clipboard
Published
20 hours ago •
oscal-compass
oscal-compass
trestle rules extension
Issue description / feature objectives
-
trestle rules must support multiple checks per rule-id for a validation component, and rule_ids need not be unique across components (validation and non-validation) a) for non-validation component, the tuple that uniquely identifies rule is: component-id + rule-id b) for validation component i) add a new column called "target-component" that identifies component for which rule is being checked ii) the tuples that uniquely identifies the check: component-id + target-component-id + rule-id + check-id
Note: "target-component is optional, but key must still be unique when target component is null.
- support multiple profiles for a component
- similar to how multiple parameters are supported by adding parameter_N columns add multiple profiles by specifying a) Profile_Source_N b) Profile_Description_N c) Control_Id_List_N
For example: In the CIS benchmarks we have mappings from benchmark rules to both CIS controls v8 and v7. To fully capture this in Comp def. we need to support mappings to both v7 and v8.
