Framework program
FedRAMP evidence template.
This is a reusable framework module. It defines source authority, native identifier patterns, collector fit, expected evidence, manual evidence gates, and deployment posture before any client project is created.
plannedRev. 5 baselines / FedRAMP 20x trackedFedRAMP
Template status
planned
FedRAMP PMO / NIST SP 800-53 Rev. 5
Seed rows
5
Source-native requirement rows
Native examples
4
Stored without normalization loss
Collectors
4
configuration, api, document, manual-upload
Deployment fits
3
SaaS, private, appliance, runner
Native source contract
Keep the framework’s identifiers intact
AC-2
Evidence maps to this native reference first, then to any shared ControlFrame control spine or cross-framework reuse.
SC-8
Evidence maps to this native reference first, then to any shared ControlFrame control spine or cross-framework reuse.
SI-2
Evidence maps to this native reference first, then to any shared ControlFrame control spine or cross-framework reuse.
CA-7
Evidence maps to this native reference first, then to any shared ControlFrame control spine or cross-framework reuse.
Automated evidence
Collector lanes to build
cloud control configuration snapshots
OSCAL component/profile ingestion
continuous monitoring evidence
vulnerability and POA&M imports
Manual or human-gated evidence
Do not fabricate these artifacts
SSP
SAP/SAR
POA&M approvals
3PAO assessment artifacts
agency authorization artifacts