Artifact Map
The artifact map connects common evidence artifacts to decisions, lifecycle stages, and related pages.
| Artifact | Supports | Lifecycle stages | Related evidence page |
|---|---|---|---|
| Device identity record | Is this the expected device? | Provisioning, acceptance, deployment, repair, transfer | Identity & Provenance |
| Platform Certificate | What platform identity or composition is claimed? | Manufacturing, logistics, acceptance | Identity & Provenance |
| Provenance record | Where did this come from? | Sourcing, manufacturing, logistics, repair, transfer | Identity & Provenance |
| SBOM or xBOM | What components are present? | Build, release, acceptance, update, vulnerability response | Software & Component Transparency |
| Reference measurement | What expected state should be compared? | Manufacturing, acceptance, deployment, update | Integrity & Attestation |
| Attestation result | Is this in expected state now? | Acceptance, deployment, monitoring, repair | Integrity & Attestation |
| Update record | Was an update authorized and installed? | Update, operations, repair | Update & Vulnerability |
| Vulnerability record | Are known exposures handled? | Sourcing, acceptance, deployment, update, audit | Update & Vulnerability |
| Repair record | Was trust restored after repair? | Repair, transfer, audit | Lifecycle State & Audit |
| Decommissioning record | Was the asset retired safely? | Decommissioning, audit | Lifecycle State & Audit |
Use This Map
Use this map when drafting supplier requests, acceptance criteria, audit evidence lists, or implementation plans.