πΌ CM-5 ACCESS RESTRICTIONS FOR CHANGE
- Contextual name: πΌ CM-5 ACCESS RESTRICTIONS FOR CHANGE
- ID:
/frameworks/nist-sp-800-53-r4/cm/05 - Located in: πΌ CM CONFIGURATION MANAGEMENT
Descriptionβ
The organization defines, documents, approves, and enforces physical and logical access restrictions associated with changes to the information system.
Similarβ
- Internal
- ID:
dec-c-faa17b7e
- ID:
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ NIST CSF v1.1 β πΌ PR.IP-1: A baseline configuration of information technology/industrial control systems is created and maintained incorporating security principles (e.g. concept of least functionality) | 4 | 14 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ CM-5 (1) AUTOMATED ACCESS ENFORCEMENT _ AUDITING | ||||
| πΌ CM-5 (2) REVIEW SYSTEM CHANGES | ||||
| πΌ CM-5 (3) SIGNED COMPONENTS | ||||
| πΌ CM-5 (4) DUAL AUTHORIZATION | ||||
| πΌ CM-5 (5) LIMIT PRODUCTION _ OPERATIONAL PRIVILEGES | ||||
| πΌ CM-5 (6) LIMIT LIBRARY PRIVILEGES | ||||
| πΌ CM-5 (7) AUTOMATIC IMPLEMENTATION OF SECURITY SAFEGUARDS |