๐ผ SA-17 Developer Security and Privacy Architecture and Design
- Contextual name: ๐ผ SA-17 Developer Security and Privacy Architecture and Design
- ID:
/frameworks/nist-sp-800-53-r5/sa/17 - Located in: ๐ผ SA System And Services Acquisition
Descriptionโ
Require the developer of the system, system component, or system service to produce a design specification and security and privacy architecture that: a. Is consistent with the organizationโs security and privacy architecture that is an integral part the organizationโs enterprise architecture; b. Accurately and completely describes the required security and privacy functionality, and the allocation of controls among physical and logical components; and c. Expresses how individual security and privacy functions, mechanisms, and services work together to provide required security and privacy capabilities and a unified approach to protection.
Similarโ
- Internal
- ID:
dec-c-086554dc
- ID:
Similar Sections (Give Policies To)โ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| ๐ผ FedRAMP High Security Controls โ ๐ผ SA-17 Developer Security and Privacy Architecture and Design (H) | ||||
| ๐ผ NIST CSF v2.0 โ ๐ผ ID.RA-09: The authenticity and integrity of hardware and software are assessed prior to acquisition and use |