πΌ SA-8 Security and Privacy Engineering Principles (L)(M)(H)
- Contextual name: πΌ SA-8 Security and Privacy Engineering Principles (L)(M)(H)
- ID:
/frameworks/fedramp-low-security-controls/sa/08 - Located in: πΌ System and Services Acquisition
Descriptionβ
Apply the following systems security and privacy engineering principles in the specification, design, development, implementation, and modification of the system and system components: [Assignment: organization-defined systems security and privacy engineering principles].
Similarβ
- Sections
/frameworks/nist-sp-800-53-r5/sa/08/frameworks/fedramp-high-security-controls/sa/08
- Internal
- ID:
dec-c-7656969f
- ID:
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ FedRAMP High Security Controls β πΌ SA-8 Security and Privacy Engineering Principles (L)(M)(H) | 6 | |||
| πΌ NIST SP 800-53 Revision 5 β πΌ SA-8 Security and Privacy Engineering Principles | 33 | 7 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (6)β
| Policy | Logic Count | Flags |
|---|---|---|
| π Google API Key is not restricted for unused APIs π’ | 1 | π’ x6 |
| π Google API Key is not rotated every 90 days π’ | 1 | π’ x6 |
| π Google Cloud SQL Server Instance 3625 (trace flag) Database Flag is not set to on π’ | 1 | π’ x6 |
| π Google Cloud SQL Server Instance user connections Database Flag is set to a limiting (other than 0) value π’ | 1 | π’ x6 |
| π Google Cloud SQL Server Instance user options Database Flag is configured π’ | 1 | π’ x6 |
| π Google Project has API Keys π’ | 1 | π x1, π’ x5 |