Service Configuration — FedRAMP KSI Domain
Generated from the official FedRAMP/docs GitHub repo. Source path:
FRMR.documentation.jsononmainat blob5c6bfee74029. FRMR version:0.9.43-beta· upstreamlast_updated:2026-04-08. The officialFedRAMP/rulesrepo exists, but grclanker still treatsFedRAMP/docsas the active source until structured rules land there.
Service Configuration
Domain code: SVC · Domain ID: KSI-SVC · Web slug: service-configuration
Theme
A secure cloud service offering will follow FedRAMP encryption policies, continuously verify information resource integrity, and restrict access to third-party information resources.
Indicators
KSI-SVC-ACM (formerly KSI-SVC-04) — Automating Configuration Management
Manage configuration of machine-based information resources using automation.
Mapped Rev5 controls: ac-2.4, cm-2, cm-2.2, cm-2.3, cm-6, cm-7.1, pl-9, pl-10, sa-5, si-5, sr-10
Terms: Information Resource, Machine-Based (information resources)
Recent update: 2026-02-04 — Removed italics and changed the ID as part of new standardization in v0.9.0-beta; no material changes.
KSI-SVC-ASM (formerly KSI-SVC-06) — Automating Secret Management
Automate management, protection, and regular rotation of digital keys, certificates, and other secrets.
Mapped Rev5 controls: ac-17.2, ia-5.2, ia-5.6, sc-12, sc-17
Terms: Regularly
Recent update: 2026-02-04 — Removed italics and changed the ID as part of new standardization in v0.9.0-beta; no material changes.
KSI-SVC-EIS (formerly KSI-SVC-01) — Evaluating and Improving Security
Implement improvements based on persistent evaluation of information resources for opportunities to improve security.
Mapped Rev5 controls: cm-7.1, cm-12.1, ma-2, pl-8, sc-7, sc-39, si-2.2, si-4, sr-10
Terms: Information Resource, Persistently
Recent update: 2026-02-04 — Removed italics and changed the ID as part of new standardization in v0.9.0-beta; no material changes.
KSI-SVC-PRR (formerly KSI-SVC-08) — Preventing Residual Risk
Mapped Rev5 controls: sc-4
Terms: Federal Customer Data, Information Resource, Likely, Persistently
Recent update: 2026-02-04 — Removed italics and changed the ID as part of new standardization in v0.9.0-beta; no material changes.
KSI-SVC-RUD (formerly KSI-SVC-10) — Removing Unwanted Data
Mapped Rev5 controls: si-12.3, si-18.4
Terms: Agency, Federal Customer Data, Promptly
Recent update: 2026-02-04 — Removed italics and changed the ID as part of new standardization in v0.9.0-beta; no material changes.
KSI-SVC-SNT (formerly KSI-SVC-02) — Securing Network Traffic
Encrypt or otherwise secure network traffic.
Mapped Rev5 controls: ac-1, ac-17.2, cp-9.8, sc-8, sc-8.1, sc-13, sc-20, sc-21, sc-22, sc-23
Recent update: 2026-02-04 — Removed italics and changed the ID as part of new standardization in v0.9.0-beta; no material changes.
KSI-SVC-VCM (formerly KSI-SVC-09) — Validating Communications
Mapped Rev5 controls: sc-23, si-7.1
Terms: Information Resource, Machine-Based (information resources), Persistent Validation, Persistently
Recent update: 2026-02-04 — Removed italics and changed the ID as part of new standardization in v0.9.0-beta; no material changes.
KSI-SVC-VRI (formerly KSI-SVC-05) — Validating Resource Integrity
Use cryptographic methods to validate the integrity of machine-based information resources.
Mapped Rev5 controls: cm-2.2, cm-8.3, sc-13, sc-23, si-7, si-7.1, sr-10
Terms: Information Resource, Machine-Based (information resources), Persistent Validation
Recent update: 2026-02-04 — Removed italics and changed the ID as part of new standardization in v0.9.0-beta; no material changes.