{"schema":"shield-atlas/standards/v1","asOf":"2026-05-04","legend":{"HELD":"Certificate or status held today.","ALIGNED":"Implementation conforms to the published spec; no third-party conformance test on file.","DESIGN_INTENT":"Targeted in architecture; not yet implemented or attested.","NOT_HELD":"Authority is not held and we are not authorized under it. Listed so the gap is on the record."},"groups":[{"name":"Emergency management & public safety","entries":[{"id":"fema-nims-ics","label":"FEMA NIMS / ICS","source":"https://www.fema.gov/emergency-managers/nims","status":"ALIGNED","use":"ESF router, RRF generator, ICS-209 bridge follow NIMS resource typing and ICS reporting structure. Not a FEMA-issued certification."},{"id":"oasis-cap-12","label":"OASIS CAP 1.2","source":"https://docs.oasis-open.org/emergency/cap/v1.2/CAP-v1.2-os.html","status":"ALIGNED","use":"CAP authoring module produces CAP 1.2-conformant XML; schema-validated. Live IPAWS submit requires sponsored credentials we do not hold."},{"id":"hsin-cap","label":"HSIN-CAP (DHS)","source":"https://www.dhs.gov/hsin","status":"ALIGNED","use":"Outbox produces HSIN-CAP messages. Live submit requires partner-held HSIN account."},{"id":"wfdss","label":"WFDSS export format","source":"https://www.usgs.gov/tools/wildland-fire-decision-support-system-wfdss","status":"ALIGNED","use":"Fire fusion exports a WFDSS-compatible payload. Push requires partner-held WFDSS access."},{"id":"nasa-firms","label":"NASA FIRMS active fire","source":"https://firms.modaps.eosdis.nasa.gov/","status":"ALIGNED","use":"Live VIIRS / MODIS detections consumed by fire fusion and exposed at /api/dual-use/fires."}]},{"name":"Geospatial, symbology & interoperability","entries":[{"id":"ogc-wms-wfs","label":"OGC WMS / WFS","source":"https://www.ogc.org/standards/","status":"ALIGNED","use":"Map layers consumed and re-served via OGC standard endpoints."},{"id":"mil-std-2525d","label":"MIL-STD-2525D","source":"DoD published symbology standard","status":"ALIGNED","use":"Tracks render to the 2525D symbol set. Use of the symbol set is not a DoD endorsement."},{"id":"stanag-4586","label":"STANAG 4586 (UAV control)","source":"https://www.nato.int/cps/en/natohq/topics_69269.htm","status":"DESIGN_INTENT","use":"Adapter design intent only; no STANAG 4586 conformance test on file."},{"id":"stanag-5516","label":"STANAG 5516 (Link 16 / TADIL-J)","source":"https://www.nato.int/cps/en/natohq/topics_69269.htm","status":"DESIGN_INTENT","use":"Track-message structure modelled in design; no Link-16 terminal interface and no STANAG 5516 conformance test on file."},{"id":"stanag-4676","label":"STANAG 4676 (intel video metadata)","source":"https://www.nato.int/cps/en/natohq/topics_69269.htm","status":"DESIGN_INTENT","use":"Metadata schema referenced for the sensor-lab module; no STANAG 4676 conformance test on file."},{"id":"tak-cot","label":"TAK Cursor-on-Target","source":"https://www.tak.gov/","status":"ALIGNED","use":"Bridge produces CoT XML, tested against ATAK. Not a TAK Product Center accreditation."}]},{"name":"AI risk, decision-support & doctrine","entries":[{"id":"nist-ai-rmf","label":"NIST AI RMF 1.0","source":"https://www.nist.gov/itl/ai-risk-management-framework","status":"ALIGNED","use":"Decision-support modules follow NIST AI RMF principles for documentation, traceability, and human oversight. Self-assessment, not a NIST audit."},{"id":"nist-csf-2","label":"NIST CSF 2.0","source":"https://www.nist.gov/cyberframework","status":"ALIGNED","use":"Internal control mapping organised against CSF 2.0 functions. Self-assessed; control-mapping artifacts gated to evaluators."},{"id":"nist-pscr","label":"NIST PSCR","source":"https://www.nist.gov/ctl/pscr","status":"ALIGNED","use":"Doctrinal anchor for DDIL-tolerant comms posture and offline operating modes."},{"id":"dod-f2t2ea","label":"DoD F2T2EA doctrine","source":"Joint publication","status":"ALIGNED","use":"Kill-web surfaces F2T2EA stages and countermeasure options. AI never authorises engagement; lethal calls human-in-loop."}]},{"name":"Compliance authorities (honest negative claims)","entries":[{"id":"fedramp","label":"FedRAMP","source":"https://www.fedramp.gov/","status":"NOT_HELD","use":"SHIELD/ATLAS is not FedRAMP-authorised. Any third-party listing claiming otherwise is incorrect."},{"id":"cmmc-l2","label":"CMMC 2.0 Level 2","source":"https://dodcio.defense.gov/CMMC/","status":"DESIGN_INTENT","use":"Practices referenced in internal control mapping. Not assessed by a C3PAO; no CMMC Level 2 status held."},{"id":"dod-il5","label":"DoD IL-5","source":"DoD Cloud Computing SRG","status":"NOT_HELD","use":"No DoD Impact Level authorisation held. Platform operates at unclassified."},{"id":"fips-140","label":"FIPS 140-2 / 140-3 validated module","source":"https://csrc.nist.gov/projects/cryptographic-module-validation-program","status":"NOT_HELD","use":"No FIPS-validated cryptographic module on the certificate list under our name."},{"id":"cac-siprnet-ato","label":"CAC / SIPRNET / ATO","source":"DoD identity, network, and authorisation programs","status":"NOT_HELD","use":"None held. Platform is unclassified commercial software."},{"id":"sba-sdvosb","label":"SBA SDVOSB","source":"https://www.sba.gov/federal-contracting/contracting-assistance-programs/service-disabled-veteran-owned-small-business-program","status":"DESIGN_INTENT","use":"SDVOSB-pending: founder qualifies; SBA certification application in process. Not yet qualified."}]}]}