Identification and Authentication (IA)

Acceptance of PIV Credentials from Other Agencies IA-8(1)

Fri, Sep 30, 2022 0 0 447 0/5 (0 Vote)

Overview:The information system accepts and electronically verifies Personal Identity Verification (PIV) credentials from other federal agencies. Supplemental Guidance:This control enhancement applies to logical access control systems (LACS) and... Read More

Acceptance of PIV Credentials IA-2(12)

Fri, Sep 30, 2022 0 0 410 0/5 (0 Vote)

Overview:The information system accepts and electronically verifies Personal Identity Verification (PIV) credentials. Supplemental Guidance:This control enhancement applies to organizations implementing logical access control systems (LACS) and... Read More

Acceptance of Third-Party Credentials IA-8(2)

Fri, Sep 30, 2022 0 0 422 0/5 (0 Vote)

Overview:The information system accepts only FICAM-approved third-party credentials. Supplemental Guidance:This control enhancement typically applies to organizational information systems that are accessible to the general public, for example, public... Read More

Authenticator Feedback IA-6

Fri, Sep 30, 2022 0 0 465 0/5 (0 Vote)

Overview:The information system obscures feedback of authentication information during the authentication process to protect the information from possible exploitation/use by unauthorized individuals. Supplemental Guidance:The feedback from... Read More

Authenticator Management IA-5

Fri, Sep 30, 2022 0 0 418 0/5 (0 Vote)

Overview:The organization manages information system authenticators by:a. Verifying, as part of the initial authenticator distribution, the identity of the individual, group, role, or device receiving the authenticator;b. Establishing initial... Read More

Automated Support for Password Strength Determination IA-5(4)

Fri, Sep 30, 2022 0 0 424 0/5 (0 Vote)

Overview:The organization employs automated tools to determine if password authenticators are sufficiently strong to satisfy [Assignment: organization-defined requirements]. Supplemental Guidance:This control enhancement focuses on the creation of... Read More

Cryptographic Module Authentication IA-7

Fri, Sep 30, 2022 0 0 472 0/5 (0 Vote)

Overview:The information system implements mechanisms for authentication to a cryptographic module that meet the requirements of applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance for such... Read More

Device Identification and Authentication IA-3

Fri, Sep 30, 2022 0 0 452 0/5 (0 Vote)

Overview:The information system uniquely identifies and authenticates [Assignment: organization- defined specific and/or types of devices] before establishing a [Selection (one or more): local; remote; network] connection. Supplemental Guidance... Read More

FedRAMP - Identification and Authorization Policy and Procedures IA-1

Fri, Sep 30, 2022 0 0 433 0/5 (0 Vote)

Overview:The organization:a. Develops, documents, and disseminates to [Assignment: organization-defined personnel or roles]:1. An identification and authentication policy that addresses purpose, scope, roles, responsibilities, management commitment,... Read More

Hardware Token-Based Authentication IA-5(11)

Fri, Sep 30, 2022 0 0 442 0/5 (0 Vote)

Overview:The information system, for hardware token-based authentication, employs mechanisms that satisfy [Assignment: organization-defined token quality requirements]. Supplemental Guidance:Hardware token-based authentication typically refers to the... Read More

Results 1 - 10 of 28