Oscal Catalog fields mapping

Australia Governance, Risk, and Compliance

Release

australia

ft:locale

en-US

ft:publication_title

Australia Governance, Risk, and Compliance

ft:clusterId

grc

bundleId

grc

workflow

Technology

Oscal Catalog fields mapping

Release version: Australia

Updated June 12, 2026

1 minute to read

CAM exports catalog and control data to OSCAL Catalog format using the following field mappings.


OSCAL Catalog field	CAM field	Description
`metadata.title`	Catalog name	Name of the NIST catalog
`metadata.version`	Catalog version	Version of the catalog (for example, 5.1.1+u3)
`metadata.oscal-version`	OSCAL version	Version of the OSCAL standard used
`metadata.last-modified`	Last modified date	Date the catalog was last modified


OSCAL Catalog field	CAM field	Description
`groups[].id`	Control family ID	Identifier of the control family (for example, PE, AC, IA)
`groups[].title`	Control family name	Name of the control family


OSCAL Catalog field	CAM field	Description
`groups[].controls[].id`	Control ID	Identifier of the control (for example, PE-5, AC-2)
`groups[].controls[].title`	Control name	Name of the control
`groups[].controls[].props[@name=impact]`	Impact	Impact levels applicable to the control (for example, Moderate, High)
`groups[].controls[].props[@name=active]`	Active	Indicates whether the control is active
`groups[].controls[].props[@name=auto_control_create]`	Auto control create	Indicates whether controls are automatically created from the catalog
`groups[].controls[].props[@name=create_control_requirements]`	Create control requirements	Indicates whether control requirements are automatically created
`groups[].controls[].props[@name=organizational_guidance]`	Organizational guidance	Organizational guidance associated with the control


OSCAL Catalog field	CAM field	Description
`groups[].controls[].parts[@name=statement]`	Control statement	Prose description of the control requirement
`groups[].controls[].parts[@name=guidance]`	Supplemental guidance	Additional guidance for implementing the control
`groups[].controls[].parts[@name=assessment-objective]`	Assessment objective	Objectives used to assess the control
`groups[].controls[].parts[@name=assessment-method]`	Assessment method	Method used to assess the control (Examine, Interview, Test)


OSCAL Catalog field	CAM field	Description
`groups[].controls[].controls[].id`	Control enhancement ID	Identifier of the control enhancement (for example, AC-2.1)