Generate FIPS cryptographic assessment from ZIP bundle

curl --request POST \
  --url https://api.usenabla.com/v1/fips \
  --header 'Content-Type: application/json' \
  --header 'X-Customer-Key: <api-key>' \
  --data '
{
  "name": "production-crypto-audit",
  "format": "json",
  "zip_content": "UEsDBBQAAAAIAA=="
}
'

{
  "id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
  "status": "completed",
  "created_at": "2023-11-07T05:31:56Z",
  "assessment": {
    "id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
    "framework": "NIST 800-53",
    "version": "Rev. 5",
    "timestamp": "2023-11-07T05:31:56Z",
    "controls": [
      {
        "control_id": "SC-13",
        "title": "Cryptographic Protection",
        "status": "satisfied",
        "findings": [
          "<string>"
        ],
        "evidence": [
          "<string>"
        ]
      }
    ],
    "summary": {
      "total_controls": 123,
      "satisfied": 123,
      "not_satisfied": 123,
      "not_applicable": 123
    }
  },
  "artifacts": [
    {
      "filename": "nist80053-assessment.json",
      "content_type": "application/json",
      "content_base64": "<string>",
      "size_bytes": 123,
      "diagram": "<string>"
    }
  ]
}

POST

fips

curl --request POST \
  --url https://api.usenabla.com/v1/fips \
  --header 'Content-Type: application/json' \
  --header 'X-Customer-Key: <api-key>' \
  --data '
{
  "name": "production-crypto-audit",
  "format": "json",
  "zip_content": "UEsDBBQAAAAIAA=="
}
'

{
  "id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
  "status": "completed",
  "created_at": "2023-11-07T05:31:56Z",
  "assessment": {
    "id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
    "framework": "NIST 800-53",
    "version": "Rev. 5",
    "timestamp": "2023-11-07T05:31:56Z",
    "controls": [
      {
        "control_id": "SC-13",
        "title": "Cryptographic Protection",
        "status": "satisfied",
        "findings": [
          "<string>"
        ],
        "evidence": [
          "<string>"
        ]
      }
    ],
    "summary": {
      "total_controls": 123,
      "satisfied": 123,
      "not_satisfied": 123,
      "not_applicable": 123
    }
  },
  "artifacts": [
    {
      "filename": "nist80053-assessment.json",
      "content_type": "application/json",
      "content_base64": "<string>",
      "size_bytes": 123,
      "diagram": "<string>"
    }
  ]
}

Authorizations

X-Customer-Key

string

header

required

Customer API key for authentication

Body

application/json

name

string

required

Name for the FIPS assessment

Example:

"production-crypto-audit"

format

enum<string>

required

Output format for the assessment

Available options:

oscal,

yaml,

json

Example:

"json"

zip_content

string

required

Base64-encoded ZIP archive. Supported file types: sbom.json/spdx.json (SBOM), *.tfstate (Terraform), *.yaml/manifest.yaml (Kubernetes), playbook.yaml (Ansible), package-lock.json/Cargo.lock/go.mod/poetry.lock (package managers), system_info.json/openssl.json (system crypto info)

Example:

"UEsDBBQAAAAIAA=="

Response

Evidence assessment completed successfully

string<uuid>

required

Unique identifier for this assessment

status

enum<string>

required

Assessment status

Available options:

completed,

failed

created_at

string<date-time>

required

Timestamp when assessment was created

assessment

object

required

Show child attributes

artifacts

object[]

required

Generated artifacts (assessment files, diagrams)

Show child attributes

Analyze firmware binary for security

⌘I

API documentation

Control Mapping Schemas

Evidence

Firmware

FIPS

Generate FIPS cryptographic assessment from ZIP bundle

Authorizations

Body

Response