Overview:
The organization protects authenticators commensurate with the security category of the information to which use of the authenticator permits access.
Supplemental Guidance:
For information systems containing multiple security categories of information without reliable physical or logical separation between categories, authenticators used to grant access to the systems are protected commensurate with the highest security category of information on the systems.
Action Items:
1) Implement mechanisms to ensure chose passwords are sufficiently strong
Related Documents:
1) Identity and Access Management Policy
Additional Guidance:
Moderate FedRAMP-Defined Assignment / Selection Parameters
none
Moderate Additional FedRAMP Requirements and Guidance
none
Article ID: 707
Created: September 30, 2022
Last Updated: September 30, 2022
Author: Matthew Burdick
Online URL: http://www.compliancewiki.org/article/protection-of-authenticators-ia-5-6-707.html