πΌ IA-5(2) Public Key-based Authentication (M)(H)
- Contextual name: πΌ IA-5(2) Public Key-based Authentication (M)(H)
- ID:
/frameworks/fedramp-moderate-security-controls/ia/05/02 - Located in: πΌ IA-5 Authenticator Management (L)(M)(H)
Descriptionβ
(a) For public key-based authentication:
-
Enforce authorized access to the corresponding private key; and
-
Map the authenticated identity to the account of the individual or group; and
(b) When public key infrastructure (PKI) is used:
-
Validate certificates by constructing and verifying a certification path to an accepted trust anchor, including checking certificate status information; and
-
Implement a local cache of revocation data to support path discovery and validation.
Similarβ
- Sections
/frameworks/fedramp-high-security-controls/ia/05/02
- Internal
- ID:
dec-c-f184dc63
- ID:
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ FedRAMP High Security Controls β πΌ IA-5(2) Public Key-based Authentication (M)(H) | 1 | 1 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (1)β
| Policy | Logic Count | Flags |
|---|---|---|
| π AWS IAM User with console and programmatic access set during the initial creation π’ | π’ x3 |