Identitate si scope
Titlu, pack identity, short scope statement si context de reviewer.
TRUST LAYERAliniat: 2026-03-14
Preview-uri publice proof pentru EPI Rail
Aceasta pagina expune preview-uri publice curate derivate din artefacte reale EPI Rail. Pachetul complet pentru review ramane intact pentru context intern sau customer delivery, dar nu mai este suprafata implicita a proof-ului public.
Publicul vede cover-ul, sumarul de reviewer, postura de verificare, controale reprezentative, gap-uri reprezentative si blocuri de artefacte. Mapping-ul complet, evidenta completa si output-ul brut raman in pack-ul complet.
Ce include un preview public
Postura si verificare
Verify status, sealed artifact posture si sumar de controale, fara dump-ul complet al fisierelor brute.
Esantion reprezentativ
2-3 controale si 2-3 gap-uri extrase din output-ul real pentru a demonstra forma de review.
Limita publica
Control matrix complet, full evidence trace, runlog-ul complet si pack.zip-ul brut nu mai sunt surfetele publice implicite.
Preview-uri publice pe biblioteci
Fiecare pagina de biblioteca este acum un preview wrapper public-sigur peste pack-ul real. Valorile de mai jos sunt derivate din artefactele actuale, nu redactate separat.
Vendor Security
vendor_securityCIS Controls v8 family-level mapping
Postura
Structura verificata
Gap-uri vizibile
80
Controale totale
80
Artefacte sigilate
6
An evidence-first pack for third-party and supplier security review, built to show baseline control posture without relying on sales claims.
ISO 27001 Readiness
iso_27001ISO/IEC 27001:2022 Annex A references
Postura
Structura verificata
Gap-uri vizibile
93
Controale totale
93
Artefacte sigilate
6
A readiness-oriented evidence pack mapped to ISO/IEC 27001:2022 Annex A references, designed for teams that need a concrete baseline before formal audit work.
SOC 2 Readiness
soc_2AICPA TSC CC1-CC9 spine
Postura
Structura verificata
Gap-uri vizibile
100
Controale totale
100
Artefacte sigilate
6
A readiness pack for organisations that need to show disciplined trust-service control evidence before any formal SOC examination.
NIST CSF Readiness
nist_csfNIST CSF 1.1 subcategory IDs
Postura
Structura verificata
Gap-uri vizibile
80
Controale totale
80
Artefacte sigilate
6
A cross-functional readiness pack aligned to NIST CSF 1.1 style categories, built for teams that need an inspectable security-baseline narrative rather than a generic maturity slide.
DFIR Incident Response
dfirDFIR lifecycle phases + NIST RS/RC crosswalk
Postura
Structura verificata
Gap-uri vizibile
84
Controale totale
84
Artefacte sigilate
6
A readiness pack for incident response and recovery review, focused on whether evidence exists for disciplined response rather than whether a team can improvise under stress.
Preview canonic de referinta
Acesta este modelul public-sigur pe care il folosim pentru a arata forma unui reviewer artifact fara a expune pack-ul complet.
Aliniere publica
2026-03-14
Civitas public proof preview
Exemplu public derivat dintr-un reviewer pack real
Cover, sumar, postura de verificare, controale reprezentative si gap-uri reprezentative extrase din output-ul real.
Pack ID: PACK-001
Biblioteca: Vendor Security
Sursa publica: Specimen public canonic
Verificare: OK
Controale
80
Gap-uri
80
Claim-uri
2
Artefacte sigilate
6
Controale reprezentative
| ID | Obiectiv | Status |
|---|---|---|
| VS-001 | Ensure Vendor Security control coverage for IDENTITY/ACCESS/MFA with documented ownership and operating cadence. | gap |
| VS-002 | Ensure Vendor Security control coverage for PRIVILEGED/REVIEW/ACCESS with documented ownership and operating cadence. | gap |
| VS-003 | Ensure Vendor Security control coverage for LOGGING/MONITORING/RETENTION with documented ownership and operating cadence. | gap |
Gap-uri reprezentative
VS-010
gapVendor Security Control 010
Severitate 5; lipsesc 3 tipuri de evidenta in esantionul actual public.
VS-030
gapVendor Security Control 030
Severitate 5; lipsesc 3 tipuri de evidenta in esantionul actual public.
VS-045
gapVendor Security Control 045
Severitate 5; lipsesc 3 tipuri de evidenta in esantionul actual public.
Preview de decizie
Suprafata publica arata cover-ul, sumarul si starea de reviewer. DecisionPack.html si PDF complete raman in contextul pack-ului complet.
Postura de integritate
Verifier OK: da; 15 intrari verificate; 6 artefacte sigilate.
Preview-ul public este aliniat la starea canonica din martie 2026; metadatele interne ale specimenului brut sunt ascunse pe suprafata publica.
Nota de boundary
Pack-ul complet contine mapping-ul complet, full evidence trace si output-urile finale. Acestea nu sunt expuse implicit pe suprafata publica.
Ce ramane in pachetul complet pentru review
Artefactele reale raman neschimbate pentru workflow-ul intern si customer delivery. Ele sunt sumarizate aici, nu expuse ca suprafata publica implicita.
DecisionPack.html
Browser-readable decision surface for reviewer inspection.
Complet reviewer pack / customer delivery
DecisionPack.pdf
Print-ready decision pack for procurement, audit, and leadership review.
Complet reviewer pack / customer delivery
DecisionPack.manifest.json
Artifact manifest and pack metadata for traceability.
Complet reviewer pack / customer delivery
DecisionPack.seal.json
Deterministic seal metadata for integrity review.
Complet reviewer pack / customer delivery
pack.zip
Pack archive delivered for local inspection and replay.
Complet reviewer pack / customer delivery
verify.json
Verifier output expected to resolve to a passing state on a valid public pack.
Complet reviewer pack / customer delivery
SHA256.txt
Checksums for reviewer-side integrity confirmation.
Complet reviewer pack / customer delivery
Verificarea ramane reala
Preview-ul public nu elimina verificarea; doar nu mai face din pack.zip, verify.json si SHA256.txt prima experienta pentru publicul rece. Verificarea locala ramane ancorata in pachetul complet si in workflow-ul de customer delivery.