saf

CMS customizations based on MITRE’s Security Automation Framework (CMS SAF)

PLEASE NOTE: MITRE SAF**** continues as an open-source shared community.

CMS’ ISPG (Information Security and Privacy Group) decided to discontinue funding it’s own CMS customizations based on MITRE’s Security Automation Framework (SAF) for CMS after September 2023.

Existing CMS-tailored Security Validation (InSpec Profile) content will still be available on Github, as well as the other open-source tools provided on the MITRE SAF website:

Baseline (to STIG or CIS) Security Validation InSpec profiles
SAF Data Converter and Attestation tools
Heimdall Lite and Server Security Data visualizer
CMS-format CAAT spreadsheet export via Heimdall and SAF-CLI.

For more information, please visit CMS SAF Program

This site is open source. Improve this page.

saf

CMS customizations based on MITRE’s Security Automation Framework (CMS SAF)

PLEASE NOTE: **MITRE SAF** continues as an open-source shared community.

PLEASE NOTE: MITRE SAF**** continues as an open-source shared community.