HDF Schemas

Appearance

HDF Schema Reference

The Heimdall Data Format (HDF) defines 7 JSON document types for security assessment data. Each schema is self-contained — all referenced types are embedded, no external fetches needed.

Document Types

📝 HDF Amendments

Waivers, attestations, POA&Ms, and other status overrides applied to findings.

📋 HDF Baseline

Security requirement definitions without results — the "what to check" document.

🔀 HDF Comparison

Differential analysis of two or more assessment results.

📦 HDF Evidence Package

Bundle of references to all HDF documents for a complete assessment record.

📅 HDF Plan

Assessment plan defining what baselines to run against which components.

  • Version: v3.1.0
  • Schema: hdf-plan.schema.json
  • $id: https://mitre.github.io/hdf-libs/schemas/hdf-plan/v3.1.0

📊 HDF Results

Assessment results from running security checks against a target system.

🏗️ HDF System

System authorization boundary, components, data flows, and control designations.

Downloads

SchemaVersionDownload
HDF Amendmentsv3.1.0hdf-amendments.schema.json
HDF Baselinev3.1.0hdf-baseline.schema.json
HDF Comparisonv3.1.0hdf-comparison.schema.json
HDF Evidence Packagev3.1.0hdf-evidence-package.schema.json
HDF Planv3.1.0hdf-plan.schema.json
HDF Resultsv3.1.0hdf-results.schema.json
HDF Systemv3.1.0hdf-system.schema.json

Released under the Apache 2.0 License.

Copyright © 2026 MITRE Corporation