The National Institute of Standards and Technology (NIST) is preparing to release the latest patch for its Open Security Controls Assessment Language (OSCAL), version 1.4, along with a version two prototype of its mapping model within the broader OSCAL framework. […]

The Department of Veterans Affairs (VA) announced on Tuesday that it is the first Federal agency to submit its Open Security Assessment Language (OSCAL) format System Security Plan (SSP) to the General Services Administration (GSA) – far ahead of the White House’s July 2026 deadline to do so. […]

The Federal Risk and Authorization Management Program (FedRAMP) authorization journey can sometimes be a confusing one to navigate, but experts agree that the National Institute of Standards and Technology’s (NIST) Open Security Controls Assessment Language (OSCAL) formats are helping to speed the FedRAMP approval process. […]

The National Institute of Standards and Technology (NIST) released Open Security Controls Assessment Language (OSCAL) 1.0.0 Milestone 3, a key step toward finalizing the full initial release of OSCAL v1. […]

The Federal Risk and Authorization Management Program (FedRAMP) and the National Institute of Standards and Technology (NIST) released the Open Security Controls Assessment Language (OSCAL) Milestone 2 for public comment. […]

The General Services Administration’s (GSA) Federal Risk and Authorization Management Program (FedRAMP) will focus on administering simplicity, automation, marketplace growth, and learning opportunities in Fiscal Year 2020, according to Director Ashley Mahan. […]

A project under development at the National Institute of Standards and Technology (NIST) is aiming to fully automate FedRAMP (Federal Risk and Authorization Management Program) and enable interoperable automation for cloud service providers (CSPs). […]