💼 IA-5(2) Public Key-based Authentication (M)(H)
- Contextual name: 💼 IA-5(2) Public Key-based Authentication (M)(H)
- ID:
/frameworks/fedramp-high-security-controls/ia/05/02 - Located in: 💼 IA-5 Authenticator Management (L)(M)(H)
Description
(a) For public key-based authentication:
-
Enforce authorized access to the corresponding private key; and
-
Map the authenticated identity to the account of the individual or group; and
(b) When public key infrastructure (PKI) is used:
-
Validate certificates by constructing and verifying a certification path to an accepted trust anchor, including checking certificate status information; and
-
Implement a local cache of revocation data to support path discovery and validation.
Similar
- Sections
/frameworks/nist-sp-800-53-r5/ia/05/02
- Internal
- ID:
dec-c-f184dc63
- ID:
Similar Sections (Take Policies From)
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 NIST SP 800-53 Revision 5 → 💼 IA-5(2) Authenticator Management _ Public Key-based Authentication |
Similar Sections (Give Policies To)
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 FedRAMP Moderate Security Controls → 💼 IA-5(2) Public Key-based Authentication (M)(H) | 1 |
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (1)
| Policy | Logic Count | Flags |
|---|---|---|
| 📝 AWS IAM User with console and programmatic access set during the initial creation 🟢 | 🟢 x3 |
Internal Rules
| Rule | Policies | Flags |
|---|---|---|
| ✉️ dec-x-b10e98af | 1 |