💼 SC-17 Public Key Infrastructure Certificates (M)(H)
- Contextual name: 💼 SC-17 Public Key Infrastructure Certificates (M)(H)
- ID:
/frameworks/fedramp-high-security-controls/sc/17 - Located in: 💼 System and Communications Protection
Description
a. Issue public key certificates under an [Assignment: organization-defined certificate policy] or obtain public key certificates from an approved service provider; and
b. Include only approved trust anchors in trust stores or certificate stores managed by the organization.
Similar
- Sections
/frameworks/nist-sp-800-53-r5/sc/17
- Internal
- ID:
dec-c-c5a362da
- ID:
Similar Sections (Take Policies From)
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 NIST SP 800-53 Revision 5 → 💼 SC-17 Public Key Infrastructure Certificates |
Similar Sections (Give Policies To)
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 FedRAMP Moderate Security Controls → 💼 SC-17 Public Key Infrastructure Certificates (M)(H) | 2 |
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (2)
| Policy | Logic Count | Flags |
|---|---|---|
| 📝 AWS CloudFront Web Distribution uses outdated SSL protocols with Custom Origins 🟢 | 1 | 🟢 x6 |
| 📝 AWS IAM Server Certificate is expired 🟢 | 1 | 🟢 x6 |
Internal Rules
| Rule | Policies | Flags |
|---|---|---|
| ✉️ dec-x-12a85339 | 1 | |
| ✉️ dec-x-4002ecfe | 1 |