Merge branch 'staging' into 1022-uswds-3.9.0-update

GSA · Oct 23, 2024 · e7649c0 · e7649c0
2 parents 1e6cc78 + 9c36b28
commit e7649c0
Show file tree

Hide file tree

Showing 7 changed files with 43 additions and 6 deletions.
diff --git a/_data/fpkiannouncements.yml b/_data/fpkiannouncements.yml
@@ -1,6 +1,12 @@
 ## FPKI Announcements Location: https://www.idmanagement.gov/fpki/notifications/#fpki-announcements
 ## see the fpkiannouncements collection settings in the _data/navigation.yml file.
 
+- title: CCT Tool v1.0.9 Release
+  pubDate: October 16, 2024
+  url: /implement/announcements/cct-tool-new-release/
+  description: An updated version of the CCT Tool was released with the addition of current federal and test trust chains to the JavaKey Store (JKS) to reduce false positives/errors.
+  status: Active
+
 - title: CPCT Tool v2.0.1 Update
   pubDate: July 05, 2024
   url: /implement/announcements/cpct-201-update/

diff --git a/_ficampmo/fpki.md b/_ficampmo/fpki.md
@@ -49,6 +49,7 @@ The [FPKI Policy Authority (FPKIPA)]({{site.baseurl}}/ficam/#federal-public-key-
 
 The FPKI has the following supplementary guidance:
 
+- [CPWG Cloud PKI Tiger Team Report (PDF, October 2024)]({{site.baseurl}}/docs/fpki_cloud_guidance.pdf){:target="_blank"}{:rel="noopener noreferrer"} – A final report including a summary and equivalent controls guidance as developed by the CPWG PKI in the Cloud Tiger Team.  This docment includes the history of the Cloud PKI Tiger Team and provides equivalent control guidance to define cloud PKI design characteristics that meet the intent of FPKI policies.
 - [Security Controls Overlay of NIST Special Publication 800-53 Revision 5 Security Controls for FPKI Systems (PDF, February 2021)]({{site.baseurl}}/docs/fpki-overlay-sp-800-53.pdf){:target="_blank"}{:rel="noopener noreferrer"} – The application of NIST Special Publication (SP) 800-53 security controls is required to operate a CA that is used in the FPKI and contains federal data. Review the controls overlay document to understand the requirements and details of each applicable control.
 - [FBCA: Cross-Certification Evaluation Framework v5.0 (PDF, September 2024)]({{site.baseurl}}/docs/fbca-cross-certification-eval-fw.pdf){:target="_blank"}{:rel="noopener noreferrer"} - This document provides a general framework for conducting FPKI cross-certification. This framework includes pre-conditions for being considered as an applicant, the cross-certification process, maintenance of the cross-certified status, and circumstances for terminating the
 cross-certification relationship.

diff --git a/_implement/announcements/16_cct_tool_v109_release.md b/_implement/announcements/16_cct_tool_v109_release.md
@@ -0,0 +1,32 @@
+---
+layout: page
+title: CCT Tool v1.0.9 Release
+pubDate: 10/16/2024
+removeDate: 10/16/2027
+collection: implement
+permalink: /implement/announcements/cct-tool-new-release/
+description: The CCT Tool v1.0.9 Release.
+category: Active
+sticky_sidenav: true
+sidenav: fpkiannouncements
+
+---
+
+An updated version of the CCT Tool was released with the addition of current federal and test trust chains to the JavaKey Store (JKS) to reduce false positives/errors.
+
+Click the link below to download the latest release of the **CCT Tool**: 
+- [Latest Release](https://github.com/GSA/piv-conformance/releases){:target="_blank"}{:rel="noopener noreferrer"}{:class="usa-link usa-link--external"}.
+
+## What's New
+- Added updated cacerts.jks Keystore file with current trust chains, including the DOD Test CAC.
+- Fixed release zip file structure, now one level, no unzipped folder in folder.
+- Updated version number v1.0.9.
+- No code changes.
+
+## User Guide
+- [Running the Card Conformance Tool](https://github.com/GSA/piv-conformance/wiki/Running-the-CCT)
+- [Viewing Test Results](https://github.com/GSA/piv-conformance/wiki/Test-results)
+- [Submit Test Results](https://github.com/GSA/piv-conformance/wiki/Submit-Test-Results-to-the-FIPS-201-Evaluation-Lab)
+- [Diagnostics](https://github.com/GSA/piv-conformance/wiki/Diagnostics)
+
+If you have any questions regarding this release please contact: [fpki-help@gsa.gov](mailto:fpki-help@gsa.gov).
diff --git a/_implement/fpki_notifications.md b/_implement/fpki_notifications.md
@@ -74,7 +74,7 @@ These announcements and hot topics concern Federal Public Key Infrastructure cha
 <script type="text/javascript" src="{{ site.baseurl }}/assets/js/gexfjs.js"></script>
 <script type="text/javascript" src="{{ site.baseurl }}/assets/js/config.js"></script>
 
-**Last Update**: October 09, 2024
+**Last Update**: October 23, 2024
 
 {% include graph.html %}
 

diff --git a/_implement/tools/crawler-lastrun.json b/_implement/tools/crawler-lastrun.json
@@ -1,9 +1,7 @@
 {
     "anchor": "common_name:Federal Common Policy CA G2,organizational_unit_name:FPKI,organization_name:U.S. Government,country_name:US",
     "changes": {
-        "new_certs": [
-            "common_name:IdenTrust Global Common Root CA 1,organization_name:IdenTrust,country_name:US:85078751516815692571400155738459603179"
-        ]
+        "new_certs": []
     },
     "issuers": [
         "common_name:Boeing Medium Assurance Hardware Issuing CA G3,organizational_unit_name:CertServers,organization_name:Boeing,country_name:US",

diff --git a/_implement/tools/fpki-certs.gexf b/_implement/tools/fpki-certs.gexf
@@ -1,8 +1,8 @@
 <?xml version="1.0" ?>
 <gexf xmlns="http://gexf.net/1.3" xmlns:viz="http://gexf.net/1.3/viz" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://gexf.net/1.3 http://gexf.net/1.3/gexf.xsd" version="1.3">
-    <meta lastmodifieddate="2024-10-09">
+    <meta lastmodifieddate="2024-10-23">
         <creator>py-crawler</creator>
-        <description>Created by Py-Crawler on 2024-10-09</description>
+        <description>Created by Py-Crawler on 2024-10-23</description>
     </meta>
     <graph defaultedgetype="directed" mode="static">
         <nodes>

diff --git a/docs/fpki_cloud_guidance.pdf b/docs/fpki_cloud_guidance.pdf