Telos Accessibility Conformance Report
Revised Section 508 Edition
(Based on VPAT® Version 2.5)
Name of Product/Version: Xacta.io™ 2.1
Report Date: June 11, 2024
Product Description: Xacta.io is an application that correlates scan results from multiple security products across the organization into a single view and maps to the relevant controls for security and risk management.
Contact Information: Maidette Cornista, Director – Project Management
Notes:
Evaluation Methods Used:
· axe Accessibility Checker for Developers
· NVDA screen reader testing
· Keyboard accessibility testing
· ANDI
· Manual front-end mark-up inspection (Chrome Web Developer Tools)
Applicable Standards/Guidelines
This report covers the degree of conformance for the following accessibility standard/guidelines:
| Standard/Guideline | Included In Report |
| Web Content Accessibility Guidelines 2.0 | Level A (Yes)Level AA (Yes)Level AAA (No) |
| Revised Section 508 standards published January 18, 2017 and corrected January 22, 2018 | (Yes) |
Terms
The terms used in the Conformance Level information are defined as follows:
· Supports: The functionality of the product has at least one method that meets the criterion without known defects or meets with equivalent facilitation.
· Partially Supports: Some functionality of the product does not meet the criterion.
· Does Not Support: The majority of product functionality does not meet the criterion.
· Not Applicable: The criterion is not relevant to the product.
· Not Evaluated: The product has not been evaluated against the criterion. This can only be used in WCAG Level AAA criteria.
WCAG 2.0 Report
Tables 1 and 2 also document conformance with Revised Section 508:
- Chapter 5 – 501.1 Scope, 504.2 Content Creation or Editing
- Chapter 6 – 602.3 Electronic Support Documentation
Note: When reporting on conformance with the WCAG 2.0 Success Criteria, they are scoped for full pages, complete processes, and accessibility-supported ways of using technology as documented in the WCAG 2.0 Conformance Requirements.
Table 1: Success Criteria, Level A
Notes:
| Criteria | Conformance Level | Remarks and Explanations | |
| 1.1.1 Non-text Content (Level A) | Partially Supports | In some areas, some dialogs are missing accessible names. In the dashboard, widget sample images are missing text descriptions. | |
| 1.2.1 Audio-only and Video-only (Prerecorded) (Level A) | Not Applicable | ||
| 1.2.2 Captions (Prerecorded) (Level A) | Supports | The application contains pages that support videos for training and it has a facility to turn ON and OFF captions. | |
| 1.2.3 Audio Description or Media Alternative (Prerecorded) (Level A) | Does Not Support | The application contains pages that support videos for training. The videos have picture-by-picture feature that would let users listen to the audio description. Transcripts are required in these videos. | |
| 1.3.1 Info and Relationships (Level A) | Partially Supports | In some areas, headers, tables and various forms cannot be programmatically determined. Keyboard accessibility and screen reader support will be included in a future release. | |
| 1.3.2 Meaningful Sequence (Level A) | Supports | ||
| 1.3.3 Sensory Characteristics (Level A) | Supports | ||
| 1.4.1 Use of Color (Level A) | Partially Supports | In some areas, there are links where distinguishable by color alone. | |
| 1.4.2 Audio Control (Level A) | Supports | The application contains pages that support videos (with audio controls) for training. | |
| 2.1.1 Keyboard (Level A) | Partially Supports | The application is currently partially keyboard accessible and not fully compatible with screen readers. Some expected visual clues and indicators are missing. Full keyboard accessibility and screen reader support will be included in a future release. | |
| 2.1.2 No Keyboard Trap (Level A) | Partially Supports | The application has some screens where focus is locked or trapped on a particular element. Fix for this will be included in a future release. | |
| 2.2.1 Timing Adjustable (Level A) | Supports | ||
| 2.2.2 Pause, Stop, Hide (Level A) | Not Applicable | ||
| 2.3.1 Three Flashes or Below Threshold (Level A) | Not Applicable | ||
| 2.4.1 Bypass Blocks (Level A) | Partially Supports | In some areas, the heading values should be fixed or landmarks provided. | |
| 2.4.2 Page Titled (Level A) | Supports | ||
| 2.4.3 Focus Order (Level A) | Partially Supports | There are some instances where the focus order may not be correct. Full keyboard accessibility will be included in a future release. | |
| 2.4.4 Link Purpose (In Context) (Level A) | Supports | ||
| 3.1.1 Language of Page (Level A) | Supports | ||
| 3.2.1 On Focus (Level A) | Partially Supports | Due to keyboard issues (WCAG 2.1.1) found, this criterion is affected. Keyboard issues will be fixed in a future release. | |
| 3.2.2 On Input (Level A) | Supports | ||
| 3.3.1 Error Identification (Level A) | Supports | ||
| 3.3.2 Labels or Instructions (Level A) | Partially Supports | A label needs to be fixed so the screen reader can give the correct label. | |
| 4.1.1 Parsing (Level A) | Supports | For WCAG 2.0 and the 508 standards, the September 2023 errata update indicates this criterion is always supported. See the WCAG 2.0 Editorial Errata. | |
| 4.1.2 Name, Role, Value (Level A) | Partially Supports | There are some user-interface elements where the role and name cannot be programmatically determined. Full screen reader support will be included in a future release. These are mostly ARIA attribute issues detected by the accessibility tool used. | |
Table 2: Success Criteria, Level AA
Notes:
| Criteria | Conformance Level | Remarks and Explanations | |
| 1.2.4 Captions (Live) (Level AA) | Not Applicable | ||
| 1.2.5 Audio Description (Prerecorded) (Level AA) | Not Applicable | ||
| 1.4.3 Contrast (Minimum) (Level AA) | Partially Supports | Some areas did not meet minimum color contrast ratio threshold. | |
| 1.4.4 Resize text (Level AA) | Partially Supports | Some areas contain minor issues when visually rendered text is resized up to 200%. Rendering issues will be fixed in a future release. | |
| 1.4.5 Images of Text (Level AA) | Not Applicable | ||
| 2.4.5 Multiple Ways (Level AA) | Partially Supports | XIO should provide more than one way to navigate through the site. Currently, we have the primary navigation. In order to fully support WCAG 2.0 criterion Multiple Ways, we should add a site-level search or a site map | |
| 2.4.6 Headings and Labels (Level AA) | Partially Supports | Some areas have screens where headings are missing where the user will gain an understanding of the content and organization | |
| 2.4.7 Focus Visible (Level AA) | Partially Supports | There are some areas in the application where elements are missing the on-tab focus indicator. Full keyboard accessibility will be included in a future release. Implementation of the planned alternate conforming view for the dashboard and roll-ups. | |
| 3.1.2 Language of Parts (Level AA) | Not Applicable | ||
| 3.2.3 Consistent Navigation (Level AA) | Supports | ||
| 3.2.4 Consistent Identification (Level AA) | Partially Supports | In some areas the Search name is not identified correctly by the screen reader. | |
| 3.3.3 Error Suggestion (Level AA) | Supports | ||
| 3.3.4 Error Prevention (Legal, Financial, Data) (Level AA) | Partially Supports | There are areas where confirmation is needed when exiting a dialog. | |
Table 3: Success Criteria, Level AAA
Notes:
| Criteria | Conformance Level | Remarks and Explanations |
| 1.2.6 Sign Language (Prerecorded) (Level AAA)Revised Section 508 – Does not apply | ||
| 1.2.7 Extended Audio Description (Prerecorded) (Level AAA)Revised Section 508 – Does not apply | ||
| 1.2.8 Media Alternative (Prerecorded) (Level AAA)Revised Section 508 – Does not apply | ||
| 1.2.9 Audio-only (Live) (Level AAA)Revised Section 508 – Does not apply | ||
| 1.4.6 Contrast (Enhanced) (Level AAA)Revised Section 508 – Does not apply | ||
| 1.4.7 Low or No Background Audio (Level AAA)Revised Section 508 – Does not apply | ||
| 1.4.8 Visual Presentation (Level AAA)Revised Section 508 – Does not apply | ||
| 1.4.9 Images of Text (No Exception) (Level AAA)Revised Section 508 – Does not apply | ||
| 2.1.3 Keyboard (No Exception) (Level AAA)Revised Section 508 – Does not apply | ||
| 2.2.3 No Timing (Level AAA)Revised Section 508 – Does not apply | ||
| 2.2.4 Interruptions (Level AAA)Revised Section 508 – Does not apply | ||
| 2.2.5 Re-authenticating (Level AAA)Revised Section 508 – Does not apply | ||
| 2.3.2 Three Flashes (Level AAA)Revised Section 508 – Does not apply | ||
| 2.4.8 Location (Level AAA)Revised Section 508 – Does not apply | ||
| 2.4.9 Link Purpose (Link Only) (Level AAA)Revised Section 508 – Does not apply | ||
| 2.4.10 Section Headings (Level AAA)Revised Section 508 – Does not apply | ||
| 3.1.3 Unusual Words (Level AAA)Revised Section 508 – Does not apply | ||
| 3.1.4 Abbreviations (Level AAA)Revised Section 508 – Does not apply | ||
| 3.1.5 Reading Level (Level AAA)Revised Section 508 – Does not apply | ||
| 3.1.6 Pronunciation (Level AAA)Revised Section 508 – Does not apply | ||
| 3.2.5 Change on Request (Level AAA)Revised Section 508 – Does not apply | ||
| 3.3.5 Help (Level AAA)Revised Section 508 – Does not apply | ||
| 3.3.6 Error Prevention (All) (Level AAA)Revised Section 508 – Does not apply |
Revised Section 508 Report
Notes:
Chapter 3: Functional Performance Criteria (FPC)
Notes:
| Criteria | Conformance Level | Remarks and Explanations |
| 302.1 Without Vision | ||
| 302.2 With Limited Vision | ||
| 302.3 Without Perception of Color | ||
| 302.4 Without Hearing | ||
| 302.5 With Limited Hearing | ||
| 302.6 Without Speech | ||
| 302.7 With Limited Manipulation | ||
| 302.8 With Limited Reach and Strength | ||
| 302.9 With Limited Language, Cognitive, and Learning Abilities |
Chapter 4: Hardware
Notes:
| Criteria | Conformance Level | Remarks and Explanations |
| 402 Closed Functionality | Heading cell – no response required | Heading cell – no response required |
| 402.1 General | Heading cell – no response required | Heading cell – no response required |
| 402.2 Speech-Output Enabled | Heading cell – no response required | Heading cell – no response required |
| 402.2.1 Information Displayed On-Screen | ||
| 402.2.2 Transactional Outputs | ||
| 402.2.3 Speech Delivery Type and Coordination | ||
| 402.2.4 User Control | ||
| 402.2.5 Braille Instructions | ||
| 402.3 Volume | Heading cell – no response required | Heading cell – no response required |
| 402.3.1 Private Listening | ||
| 402.3.2 Non-private Listening | ||
| 402.4 Characters on Display Screens | ||
| 402.5 Characters on Variable Message Signs | ||
| 403 Biometrics | Heading cell – no response required | Heading cell – no response required |
| 403.1 General | ||
| 404 Preservation of Information Provided for Accessibility | Heading cell – no response required | Heading cell – no response required |
| 404.1 General | ||
| 405 Privacy | Heading cell – no response required | Heading cell – no response required |
| 405.1 General | ||
| 406 Standard Connections | Heading cell – no response required | Heading cell – no response required |
| 406.1 General | ||
| 407 Operable Parts | Heading cell – no response required | Heading cell – no response required |
| 407.2 Contrast | ||
| 407.3 Input Controls | Heading cell – no response required | Heading cell – no response required |
| 407.3.1 Tactilely Discernible | ||
| 407.3.2 Alphabetic Keys | ||
| 407.3.3 Numeric Keys | ||
| 407.4 Key Repeat | ||
| 407.5 Timed Response | ||
| 407.6 Operation | ||
| 407.7 Tickets, Fare Cards, and Keycards | ||
| 407.8 Reach Height and Depth | Heading cell – no response required | Heading cell – no response required |
| 407.8.1 Vertical Reference Plane | ||
| 407.8.1.1 Vertical Plane for Side Reach | ||
| 407.8.1.2 Vertical Plane for Forward Reach | ||
| 407.8.2 Side Reach | ||
| 407.8.2.1 Unobstructed Side Reach | ||
| 407.8.2.2 Obstructed Side Reach | ||
| 407.8.3 Forward Reach | ||
| 407.8.3.1 Unobstructed Forward Reach | ||
| 407.8.3.2 Obstructed Forward Reach | ||
| 407.8.3.2.1 Operable Part Height for ICT with Obstructed Forward Reach | ||
| 407.8.3.2.2 Knee and Toe Space under ICT with Obstructed Forward Reach | ||
| 408 Display Screens | Heading cell – no response required | Heading cell – no response required |
| 408.2 Visibility | ||
| 408.3 Flashing | ||
| 409 Status Indicators | Heading cell – no response required | Heading cell – no response required |
| 409.1 General | ||
| 410 Color Coding | Heading cell – no response required | Heading cell – no response required |
| 410.1 General | ||
| 411 Audible Signals | Heading cell – no response required | Heading cell – no response required |
| 411.1 General | ||
| 412 ICT with Two-Way Voice Communication | Heading cell – no response required | Heading cell – no response required |
| 412.2 Volume Gain | Heading cell – no response required | Heading cell – no response required |
| 412.2.1 Volume Gain for Wireline Telephones | ||
| 412.2.2 Volume Gain for Non-Wireline ICT | ||
| 412.3 Interference Reduction and Magnetic Coupling | Heading cell – no response required | Heading cell – no response required |
| 412.3.1 Wireless Handsets | ||
| 412.3.2 Wireline Handsets | ||
| 412.4 Digital Encoding of Speech | ||
| 412.5 Real-Time Text Functionality | Reserved for future | Reserved for future |
| 412.6 Caller ID | ||
| 412.7 Video Communication | ||
| 412.8 Legacy TTY Support | Heading cell – no response required | Heading cell – no response required |
| 412.8.1 TTY Connectability | ||
| 412.8.2 Voice and Hearing Carry Over | ||
| 412.8.3 Signal Compatibility | ||
| 412.8.4 Voice Mail and Other Messaging Systems | ||
| 413 Closed Caption Processing Technologies | Heading cell – no response required | Heading cell – no response required |
| 413.1.1 Decoding and Display of Closed Captions | ||
| 413.1.2 Pass-Through of Closed Caption Data | ||
| 414 Audio Description Processing Technologies | Heading cell – no response required | Heading cell – no response required |
| 414.1.1 Digital Television Tuners | ||
| 414.1.2 Other ICT | ||
| 415 User Controls for Captions and Audio Descriptions | Heading cell – no response required | Heading cell – no response required |
| 415.1.1 Caption Controls | ||
| 415.1.2 Audio Description Controls |
Chapter 5: Software
Notes:
| Criteria | Conformance Level | Remarks and Explanations |
| 501.1 Scope – Incorporation of WCAG 2.0 AA | See WCAG 2.x section | See information in WCAG 2.x section |
| 502 Interoperability with Assistive Technology | Heading cell – no response required | Heading cell – no response required |
| 502.2.1 User Control of Accessibility Features | ||
| 502.2.2 No Disruption of Accessibility Features | ||
| 502.3 Accessibility Services | Heading cell – no response required | Heading cell – no response required |
| 502.3.1 Object Information | ||
| 502.3.2 Modification of Object Information | ||
| 502.3.3 Row, Column, and Headers | ||
| 502.3.4 Values | ||
| 502.3.5 Modification of Values | ||
| 502.3.6 Label Relationships | ||
| 502.3.7 Hierarchical Relationships | ||
| 502.3.8 Text | ||
| 502.3.9 Modification of Text | ||
| 502.3.10 List of Actions | ||
| 502.3.11 Actions on Objects | ||
| 502.3.12 Focus Cursor | ||
| 502.3.13 Modification of Focus Cursor | ||
| 502.3.14 Event Notification | ||
| 502.4 Platform Accessibility Features | ||
| 503 Applications | Heading cell – no response required | Heading cell – no response required |
| 503.2 User Preferences | ||
| 503.3 Alternative User Interfaces | ||
| 503.4 User Controls for Captions and Audio Description | Heading cell – no response required | Heading cell – no response required |
| 503.4.1 Caption Controls | ||
| 503.4.2 Audio Description Controls | ||
| 504 Authoring Tools | Heading cell – no response required | Heading cell – no response required |
| 504.2 Content Creation or Editing (if not authoring tool, enter “not applicable”) | See WCAG 2.x section | See information in WCAG 2.x section |
| 504.2.1 Preservation of Information Provided for Accessibility in Format Conversion | ||
| 504.2.2 PDF Export | ||
| 504.3 Prompts | ||
| 504.4 Templates |
Chapter 6: Support Documentation and Services
Notes:
| Criteria | Conformance Level | Remarks and Explanations |
| 601.1 Scope | Heading cell – no response required | Heading cell – no response required |
| 602 Support Documentation | Heading cell – no response required | Heading cell – no response required |
| 602.2 Accessibility and Compatibility Features | ||
| 602.3 Electronic Support Documentation | See WCAG 2.x section | See information in WCAG 2.x section |
| 602.4 Alternate Formats for Non-Electronic Support Documentation | ||
| 603 Support Services | Heading cell – no response required | Heading cell – no response required |
| 603.2 Information on Accessibility and Compatibility Features | Partially Supports | A separate VPAT will be made available for the Telos Concierge™ customer support portal. |
| 603.3 Accommodation of Communication Needs | Partially Supports | A separate VPAT will be made available for the Telos Concierge customer support portal. |
Telos Legal Disclaimer
This Telos® Accessibility Conformance Report (the “ACR”) describes the ability of the subject Product (the “Telos Solution”), as of the Report Date, to support the listed Accessibility Standards/Guidelines as such standards are outlined in the ITI VPAT® Version 2.5 developed by the Information Technology Industry Council (ITI) and interpreted by Telos. This ACR is provided “as is” and for informational purposes only; Telos makes no guarantee that all of the information in the ACR is error free or will remain accurate after the Report Date. Telos monitors the accessibility of the Telos Solution on an ongoing basis and will provide updates to this ACR with each major release of the Telos Solution.
Please contact Telos at telos.concierge@telos.com to report any suspected accessibility errors or conformance claim errors for re-evaluation and correction, if necessary.
