2015 06-12 devopsdc 2015 - consumer to collaborator
TRANSCRIPT
![Page 1: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/1.jpg)
Consumer to Collaborator
Re-Imagining the Government’s rolein Open Source
![Page 2: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/2.jpg)
EXPLAIN YOUR FISMA PROCESS
![Page 3: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/3.jpg)
![Page 4: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/4.jpg)
OR, EMBED INTO KICKSTART:
$ oscap xccdf eval \--remediate \--profile stig-rhel6-server-upstream \--report /root/scan-report.html \/usr/share/xml/scap/content.xml
![Page 5: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/5.jpg)
![Page 6: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/6.jpg)
![Page 7: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/7.jpg)
![Page 8: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/8.jpg)
![Page 9: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/9.jpg)
![Page 10: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/10.jpg)
Miracle at Willow Run
![Page 11: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/11.jpg)
![Page 12: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/12.jpg)
![Page 13: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/13.jpg)
FIRST USE OF CONTAINERS?
![Page 14: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/14.jpg)
Mode 1 Mode 2
![Page 15: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/15.jpg)
Mode 1 Mode 2
TRADITIONAL
![Page 16: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/16.jpg)
Mode 1 Mode 2
TRADITIONAL EXPLORATORY
![Page 17: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/17.jpg)
YOU ARE NOT ANIT CRAFTSMAN
YOU ARE ABI-MODAL IT
MANUFACTURER
![Page 18: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/18.jpg)
![Page 19: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/19.jpg)
CATEGORIZE(FIPS 199 / SP 800-60)
![Page 20: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/20.jpg)
CATEGORIZE(FIPS 199 / SP 800-60)
SELECT CONTROLS(FIPS 200 / SP 800-53)
![Page 21: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/21.jpg)
CATEGORIZE(FIPS 199 / SP 800-60)
SELECT CONTROLS(FIPS 200 / SP 800-53)
IMPLEMENT CONTROLS(SP 800-70)
![Page 22: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/22.jpg)
CATEGORIZE(FIPS 199 / SP 800-60)
SELECT CONTROLS(FIPS 200 / SP 800-53)
IMPLEMENT CONTROLS(SP 800-70)
ACCESS CONTROLS(SP 800-53A)
![Page 23: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/23.jpg)
CATEGORIZE(FIPS 199 / SP 800-60)
SELECT CONTROLS(FIPS 200 / SP 800-53)
IMPLEMENT CONTROLS(SP 800-70)
ACCESS CONTROLS(SP 800-53A)
AUTHORIZE(SP 800-37)
![Page 24: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/24.jpg)
CATEGORIZE(FIPS 199 / SP 800-60)
SELECT CONTROLS(FIPS 200 / SP 800-53)
IMPLEMENT CONTROLS(SP 800-70)
ACCESS CONTROLS(SP 800-53A)
MONITOR(SP 800-37 / SP 800-53A)
AUTHORIZE(SP 800-37)
![Page 25: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/25.jpg)
… and DevOps g
oes...
![Page 26: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/26.jpg)
![Page 27: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/27.jpg)
Everyone knows thatSCAP is a suite of XML standards for creating automated checklists for configuration and vulnerability scans!
![Page 28: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/28.jpg)
![Page 29: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/29.jpg)
Features
Risk?
Risk?
Risk?
Units of ___________
Growth
![Page 30: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/30.jpg)
Community created portfolioof tools and content to make
attestations about known vulnerabilities
https://github.com/OpenSCAP
![Page 31: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/31.jpg)
![Page 32: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/32.jpg)
![Page 33: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/33.jpg)
![Page 34: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/34.jpg)
![Page 35: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/35.jpg)
![Page 36: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/36.jpg)
![Page 37: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/37.jpg)
$ govready scan
![Page 38: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/38.jpg)
![Page 39: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/39.jpg)
![Page 40: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/40.jpg)
HOW TO ENGAGEOpenSCAP GitHub:https://github.com/OpenSCAP
OpenSCAP References & Docs:https://github.com/OpenSCAP/scap-security-guide/wiki/Collateral-and-References
SCAP Content Mailing List:https://fedorahosted.org/mailman/listinfo/scap-security-guide
GovReady user-friendly front-end:https://github.com/GovReady/govready
Ansible-SCAP (+ Vagrant) demo. See how it all works - painlessly:https://github.com/openprivacy/ansible-scap
NIST SCAP Website:https://scap.nist.gov
![Page 41: 2015 06-12 DevOpsDC 2015 - Consumer to Collaborator](https://reader035.vdocuments.us/reader035/viewer/2022070510/58ac3cc41a28ab145e8b665d/html5/thumbnails/41.jpg)
Shawn [email protected]
443-534-0130
CONTACT INFO
Greg [email protected]
m917-304-3488
om412-996-4113