Skip to Content

 Identification and Authentication (IA)

Organizational Users Group Authentication IA-2(5)

Fri, Sep 30, 2022 0 0 434 0/5 (0 Vote)

Overview:The organization requires individuals to be authenticated with an individual authenticator when a group authenticator is employed. Supplemental Guidance:Requiring individuals to use individual authenticators as a second level of... Read More

Organizational Users IA-2

Fri, Sep 30, 2022 0 0 328 0/5 (0 Vote)

Overview:The information system uniquely identifies and authenticates organizational users (or processes acting on behalf of organizational users). Supplemental Guidance:Organizational users include employees or individuals that organizations deem to... Read More

Password-Based Authentication IA-5(1)

Fri, Sep 30, 2022 0 0 413 0/5 (0 Vote)

Overview:The information system, for password-based authentication:(a) Enforces minimum password complexity of [Assignment: organization-defined requirements for case sensitivity, number of characters, mix of upper-case letters, lower-case letters,... Read More

PKI-Based Authentication IA-5(2)

Fri, Sep 30, 2022 0 0 408 0/5 (0 Vote)

Overview:The information system, for PKI-based authentication:(a) Validates certifications by constructing and verifying a certification path to an accepted trust anchor including checking certificate status information;(b) Enforces authorized access... Read More

Protection of Authenticators IA-5(6)

Fri, Sep 30, 2022 0 0 426 0/5 (0 Vote)

Overview:The organization protects authenticators commensurate with the security category of the information to which use of the authenticator permits access. Supplemental Guidance:For information systems containing multiple security categories of... Read More

Remote Access Separate Device IA-2(11)

Fri, Sep 30, 2022 0 0 386 0/5 (0 Vote)

Overview:The information system implements multifactor authentication for remote access to privileged and non-privileged accounts such that one of the factors is provided by a device separate from the system gaining access and the device meets ... Read More

Use of FICAM-Approved Products IA-8(3)

Fri, Sep 30, 2022 0 0 399 0/5 (0 Vote)

Overview:The organization employs only FICAM-approved information system components in [Assignment: organization-defined information systems] to accept third-party credentials. Supplemental Guidance:This control enhancement typically applies to... Read More

Use of FICAM-Issue Profiles IA-8(4)

Fri, Sep 30, 2022 0 0 389 0/5 (0 Vote)

Overview:The information system conforms to FICAM-issued profiles. Supplemental Guidance:This control enhancement addresses open identity management standards. To ensure that these standards are viable, robust, reliable, sustainable (e.g., available... Read More

Results 21 - 28 of 28