Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

    Presentations 2025
Presentation

OSCAL Monthly Workshop Series - Event #38: CAPORDINO: A Data Converter to OSCAL Catalogs

August 20, 2025

Presenters

Selena Xiao - Computer Scientist - NIST

Description

To achieve the goal of security assessment automation, reference data from various security frameworks must be converted into a standardized, machine-readable format to ensure interoperability among tools and to support data portability. The NIST Cybersecurity and Privacy Reference Tool (CPRT) contributes to this effort by providing reference data in a structured JSON format. CAPORDINO, a tool developed to complete the conversion process to OSCAL, builds on this foundation. This workshop will demonstrate how CAPORDINO ingests a selected framework from CPRT, maps its JSON data objects to OSCAL catalog structures, and generates a well-structured, valid OSCAL catalog.

Downloads

Related Topics

Security and Privacy: risk assessment, security automation, security measurement

Applications: cybersecurity framework

Created August 22, 2025