💼 SI-8 Spam Protection (M)(H)
- Contextual name: 💼 SI-8 Spam Protection (M)(H)
- ID:
/frameworks/fedramp-high-security-controls/si/08 - Located in: 💼 System and Information Integrity
Description​
a. Employ spam protection mechanisms at system entry and exit points to detect and act on unsolicited messages; and
b. Update spam protection mechanisms when new releases are available in accordance with organizational configuration management policy and procedures.
SI-8 Additional FedRAMP Requirements and Guidance:
Guidance: When CSO sends email on behalf of the government as part of the business offering, Control Description should include implementation of Domain-based Message Authentication, Reporting & Conformance (DMARC) on the sending domain for outgoing messages as described in DHS Binding Operational Directive (BOD) 18-01.
Guidance: CSPs should confirm DMARC configuration (where appropriate) to ensure that policy=reject and the rua parameter includes reports@dmarc.cyber.dhs.gov. DMARC compliance should be documented in the SI-08 control implementation solution description and list the FROM: domain(s) that will be seen by email recipients.
Similar​
- Sections
/frameworks/nist-sp-800-53-r5/si/08
- Internal
- ID:
dec-c-e1b9be51
- ID:
Similar Sections (Take Policies From)​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 NIST SP 800-53 Revision 5 → 💼 SI-8 Spam Protection | 3 |
Similar Sections (Give Policies To)​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 FedRAMP Moderate Security Controls → 💼 SI-8 Spam Protection (M)(H) | 1 |
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 SI-8(2) Automatic Updates (M)(H) |