This project/repo is the home project for the Freedonia SSP/ATO. The component projects are at freedonia-compliance and freedonia-aws-compliance
Our overall project aims to exemplify how you can re-use off-the-shelf cloud systems (AWS, etc.) and open-source frameworks, and their accompanying NIST-800-53 controls as described by opencontrol to rapidly generate a complete system security plan (SSP)
As this project is in a state of flux, current documentation is in the wiki
Mostly we're just here to house issues and documentation.
Outline
-
freedonia-aws-compliance
- development Terraform one node with SSH to [ips] and port 80 to [ips]
- production: Terraform one node with SSH to [ips] and port 80 to 0.0.0.0
- provision w/ Chef?
-
freedonia-compliance
- Display "Welcome to Freedonia"
Audience
- FISMA newbies that need a getting started
- FISMA experts that need a more efficent way of doing work
- FISMA enforcers that need to trust the framwework we're presenting