FedRAMP AI Studio

Automated SSP Narrative Generation
← Back to Dashboard

Generated Diagram (Use Case 11) DRAFT

Account: 154776478584 Models: gpt-5.2 /
Diagram saved. ID: 8c09b316-6581-448c-b833-cb900e577b86 — Retrievable via DB and viewable at /ui/diagrams/8c09b316-6581-448c-b833-cb900e577b86
This page renders the Mermaid diagram (Mermaid-only mode).

Summarizer Output (Step 1)

{
  "boundary_label": "AWS Account 154776478584 (us-east-1) - Default VPC vpc-033668c99bb7641b0",
  "data_flows": [
    "Internet -\u003e Internet Gateway igw-0c2d9b6f737cc026e -\u003e VPC vpc-033668c99bb7641b0",
    "VPC vpc-033668c99bb7641b0 -\u003e subnet-0b8c568bc3659b486 -\u003e EC2 i-0601780d500bb51ea (traffic governed by SG sg-090ff45d5d6ad1cd4 / NACL / route table)",
    "VPC vpc-033668c99bb7641b0 -\u003e subnet-05c9a438bb7c68867 -\u003e EC2 i-0322a28bf1a8a68c5 (traffic governed by SG sg-090ff45d5d6ad1cd4 / NACL / route table)"
  ],
  "infrastructure_to_draw": [
    "System boundary: AWS Account 154776478584, region us-east-1",
    "VPC: vpc-033668c99bb7641b0 (CIDR 172.31.0.0/16, default VPC)",
    "Internet Gateway: igw-0c2d9b6f737cc026e attached to vpc-033668c99bb7641b0",
    "Subnets (6, all map_public_ip_on_launch=true): subnet-0b3e792cb9abb6b15 (us-east-1b 172.31.0.0/20), subnet-0b8c568bc3659b486 (us-east-1d 172.31.16.0/20), subnet-0c567848e2f3285b9 (us-east-1a 172.31.32.0/20), subnet-006336d9696975386 (us-east-1e 172.31.48.0/20), subnet-06c23e873cdba6e94 (us-east-1f 172.31.64.0/20), subnet-05c9a438bb7c68867 (us-east-1c 172.31.80.0/20)",
    "Network security controls: 3 Security Groups (only sg-090ff45d5d6ad1cd4 is explicitly referenced by instances), 1 Network ACL, 1 Route Table",
    "Compute tier: EC2 i-0601780d500bb51ea (\"First Instance\", t2.medium, stopped) in subnet-0b8c568bc3659b486 with private IP 172.31.27.120, SG sg-090ff45d5d6ad1cd4, no public IP",
    "Compute tier: EC2 i-0322a28bf1a8a68c5 (\"Second Instance\", t2.micro, stopped) in subnet-05c9a438bb7c68867 with private IP 172.31.87.12, SG sg-090ff45d5d6ad1cd4, no public IP",
    "Not present in evidence: NAT Gateways, VPC Endpoints, VPC Flow Logs, CloudTrail Trails, CloudWatch Log Groups, S3 Buckets, RDS Instances"
  ]
}

Evidence JSON (Audit Trail)

{
  "account_id": "154776478584",
  "counts": {
    "assets": [
      {
        "count": 3,
        "resource_type": "ebs_volume"
      },
      {
        "count": 2,
        "resource_type": "ec2_instance"
      }
    ],
    "data_stores": [],
    "identities": [
      {
        "count": 1,
        "resource_type": "iam_credential_report"
      },
      {
        "count": 1,
        "resource_type": "iam_password_policy"
      },
      {
        "count": 4,
        "resource_type": "iam_role"
      },
      {
        "count": 5,
        "resource_type": "iam_user"
      }
    ],
    "network_components": [
      {
        "count": 1,
        "resource_type": "internet_gateway"
      },
      {
        "count": 1,
        "resource_type": "network_acl"
      },
      {
        "count": 1,
        "resource_type": "route_table"
      },
      {
        "count": 3,
        "resource_type": "security_group"
      },
      {
        "count": 6,
        "resource_type": "subnet"
      },
      {
        "count": 1,
        "resource_type": "vpc"
      }
    ]
  },
  "ingestion_run_id": "c0d8f077-c4ed-4995-a78d-e4810167baf7",
  "notes": {
    "no_hallucination": true,
    "resource_types_supported": [
      "vpc",
      "subnet",
      "internet_gateway",
      "nat_gateway",
      "vpc_endpoint",
      "vpc_flow_log",
      "ec2_instance",
      "rds_instance",
      "s3_bucket",
      "cloudtrail_trail",
      "cloudwatch_log_group"
    ],
    "sample_limit": 50
  },
  "resources": {
    "cloudtrail_trails": [],
    "cloudwatch_log_groups": [],
    "ec2_instances": [
      {
        "account_id": "154776478584",
        "data": {
          "ebs_optimized": false,
          "iam_instance_profile": null,
          "instance_id": "i-0601780d500bb51ea",
          "instance_type": "t2.medium",
          "launch_time": "2022-09-10T16:59:37Z",
          "monitoring_enabled": false,
          "private_ip": "172.31.27.120",
          "public_ip": null,
          "security_group_ids": [
            "sg-090ff45d5d6ad1cd4"
          ],
          "state": "stopped",
          "subnet_id": "subnet-0b8c568bc3659b486",
          "tags": {
            "Name": "First Instance"
          },
          "vpc_id": "vpc-033668c99bb7641b0"
        },
        "id": "d1392214-4c12-44cf-b8e3-160b57125c6c",
        "region": "us-east-1",
        "resource_id": "i-0601780d500bb51ea",
        "resource_type": "ec2_instance"
      },
      {
        "account_id": "154776478584",
        "data": {
          "ebs_optimized": false,
          "iam_instance_profile": null,
          "instance_id": "i-0322a28bf1a8a68c5",
          "instance_type": "t2.micro",
          "launch_time": "2022-09-20T23:57:09Z",
          "monitoring_enabled": false,
          "private_ip": "172.31.87.12",
          "public_ip": null,
          "security_group_ids": [
            "sg-090ff45d5d6ad1cd4"
          ],
          "state": "stopped",
          "subnet_id": "subnet-05c9a438bb7c68867",
          "tags": {
            "Name": "Second Instance"
          },
          "vpc_id": "vpc-033668c99bb7641b0"
        },
        "id": "23363c29-8c9c-4afa-b24c-c378d508386c",
        "region": "us-east-1",
        "resource_id": "i-0322a28bf1a8a68c5",
        "resource_type": "ec2_instance"
      }
    ],
    "internet_gateways": [
      {
        "account_id": "154776478584",
        "data": {
          "attachments": [
            {
              "State": "available",
              "VpcId": "vpc-033668c99bb7641b0"
            }
          ],
          "internet_gateway_id": "igw-0c2d9b6f737cc026e",
          "tags": {}
        },
        "id": "1c731d4f-7615-4279-afe4-9ee7381232c3",
        "region": "us-east-1",
        "resource_id": "igw-0c2d9b6f737cc026e",
        "resource_type": "internet_gateway"
      }
    ],
    "nat_gateways": [],
    "rds_instances": [],
    "s3_buckets": [],
    "subnets": [
      {
        "account_id": "154776478584",
        "data": {
          "availability_zone": "us-east-1d",
          "available_ip_address_count": 4090,
          "cidr_block": "172.31.16.0/20",
          "map_public_ip_on_launch": true,
          "state": "available",
          "subnet_id": "subnet-0b8c568bc3659b486",
          "tags": {},
          "vpc_id": "vpc-033668c99bb7641b0"
        },
        "id": "458956aa-35a1-4863-9a61-77fb4bbc9482",
        "region": "us-east-1",
        "resource_id": "subnet-0b8c568bc3659b486",
        "resource_type": "subnet"
      },
      {
        "account_id": "154776478584",
        "data": {
          "availability_zone": "us-east-1a",
          "available_ip_address_count": 4091,
          "cidr_block": "172.31.32.0/20",
          "map_public_ip_on_launch": true,
          "state": "available",
          "subnet_id": "subnet-0c567848e2f3285b9",
          "tags": {},
          "vpc_id": "vpc-033668c99bb7641b0"
        },
        "id": "c03d58f5-7682-4fa8-858f-a0d450d65bb0",
        "region": "us-east-1",
        "resource_id": "subnet-0c567848e2f3285b9",
        "resource_type": "subnet"
      },
      {
        "account_id": "154776478584",
        "data": {
          "availability_zone": "us-east-1f",
          "available_ip_address_count": 4091,
          "cidr_block": "172.31.64.0/20",
          "map_public_ip_on_launch": true,
          "state": "available",
          "subnet_id": "subnet-06c23e873cdba6e94",
          "tags": {},
          "vpc_id": "vpc-033668c99bb7641b0"
        },
        "id": "f523f766-a288-45b4-9e1a-a90d648d1219",
        "region": "us-east-1",
        "resource_id": "subnet-06c23e873cdba6e94",
        "resource_type": "subnet"
      },
      {
        "account_id": "154776478584",
        "data": {
          "availability_zone": "us-east-1b",
          "available_ip_address_count": 4091,
          "cidr_block": "172.31.0.0/20",
          "map_public_ip_on_launch": true,
          "state": "available",
          "subnet_id": "subnet-0b3e792cb9abb6b15",
          "tags": {},
          "vpc_id": "vpc-033668c99bb7641b0"
        },
        "id": "09cfd57a-740c-4495-80a3-768b081e6544",
        "region": "us-east-1",
        "resource_id": "subnet-0b3e792cb9abb6b15",
        "resource_type": "subnet"
      },
      {
        "account_id": "154776478584",
        "data": {
          "availability_zone": "us-east-1c",
          "available_ip_address_count": 4090,
          "cidr_block": "172.31.80.0/20",
          "map_public_ip_on_launch": true,
          "state": "available",
          "subnet_id": "subnet-05c9a438bb7c68867",
          "tags": {},
          "vpc_id": "vpc-033668c99bb7641b0"
        },
        "id": "b8dcf23b-273a-4c9c-acc9-caa0f921b40a",
        "region": "us-east-1",
        "resource_id": "subnet-05c9a438bb7c68867",
        "resource_type": "subnet"
      },
      {
        "account_id": "154776478584",
        "data": {
          "availability_zone": "us-east-1e",
          "available_ip_address_count": 4091,
          "cidr_block": "172.31.48.0/20",
          "map_public_ip_on_launch": true,
          "state": "available",
          "subnet_id": "subnet-006336d9696975386",
          "tags": {},
          "vpc_id": "vpc-033668c99bb7641b0"
        },
        "id": "499593f9-4870-4577-b1e6-13ac5e800e4c",
        "region": "us-east-1",
        "resource_id": "subnet-006336d9696975386",
        "resource_type": "subnet"
      }
    ],
    "vpc_endpoints": [],
    "vpc_flow_logs": [],
    "vpcs": [
      {
        "account_id": "154776478584",
        "data": {
          "cidr_block": "172.31.0.0/16",
          "dhcp_options_id": "dopt-0823549fe54a61393",
          "instance_tenancy": "default",
          "is_default": true,
          "state": "available",
          "tags": {},
          "vpc_id": "vpc-033668c99bb7641b0"
        },
        "id": "9a77f695-9bbf-4b1b-a831-049f3b72232e",
        "region": "us-east-1",
        "resource_id": "vpc-033668c99bb7641b0",
        "resource_type": "vpc"
      }
    ]
  }
}
FedRAMP AI Studio — Assessment AI Engine — 0.1.0