Add to collection(s) Add to saved
  1. Math

1.7. Identification and Authentication (IA)

advertisement 
FedRAMP Security Controls Baseline
Version 1.0
Control Number and Name
Control Baseline
Low
Moderate
Control Parameter
Requirements
1.7.
IA-1
Identification
and
Authentication
Policy and
Procedures
IA-1
IA-1
IA-2
Identification
and
Authentication
(Organizational
Users)
IA-2
IA-2
IA-2 (1)
IA-2 (1)
Additional Requirements
and Guidance
Identification and Authentication (IA)
IA-1
[Assignment: organization-defined
frequency]
Parameter: [at least annually]
None.
IA-2 (8)
IA-2 (8)
[Assignment: organization-defined
replay-resistant authentication
mechanisms]
Parameter: See additional
requirements and guidance.
IA-2 (8)
Requirement: The service provider defines replay-resistant authentication mechanisms. The
mechanisms are approved and accepted by the JAB.
IA-3
Requirement: The service provider defines a list a specific devices and/or types of devices. The
list of devices and/or device types is approved and accepted by the JAB.
IA-2 (2)
IA-2 (3)
IA-3
Device
Identification
and
Authentication
Not Selected
IA-3
IA-3
[Assignment: organization-defined list
of specific and/or types of devices]
Parameter: See additional
requirements and guidance.
IA-4
Identifier
Management
IA-4
IA-4
IA-4d.
[Assignment: organization-defined time
period]
Parameter: [at least two years]
IA-4e.
IA-4e.
[Assignment: organization-defined time Requirement: The service provider defines time period of inactivity for device identifiers. The
period of inactivity]
time period is approved and accepted by JAB.
Parameter: [ninety days for user
identifiers]
Parameter: See additional
requirements and guidance.
IA-5
Authenticator
Management
IA-4 (4)
IA-4 (4)
[Assignment: organization-defined
characteristic identifying user status]
Parameter: [contractors; foreign
nationals]
IA-5
IA-5
IA-5g.
[Assignment: organization-defined
time period by authenticator type]
Parameter: [sixty days]
IA-5 (1)
IA-5 (1)
IA-5 (1) (a)
IA-5 (1) (a)
[Assignment: organization-defined
Guidance: Mobile devices are excluded from the password complexity requirement.
requirements for case sensitivity,
number of characters, mix of uppercase letters, lower-case letters,
numbers, and special characters,
including minimum requirements for
each type]
Parameter: [case sensitive, minimum
of twelve characters, and at least one
each of upper-case letters, lower-case
letters, numbers, and special
characters]
IA-5 (1) (b)
[Assignment: organization-defined
number of changed characters]
Parameter: [at least one or as
determined by the information system
(where possible)]
IA-5 (1) (d)
[Assignment: organization-defined
numbers for lifetime minimum, lifetime
maximum]
Parameter: [one day minimum, sixty
day maximum]
IA-5 (1) (e)
[Assignment: organization-defined
number]
Parameter: [twenty four]
IA-5 (2)
IA-5 (3)
IA-5 (3)
[Assignment: organization-defined
types of and/or specific authenticators]
Parameter: [HSPD12 smart cards]
IA-5 (6)
IA-6
IA-7
IA-8
Authenticator
Feedback
Cryptographic
Module
Authentication
IA-6
IA-5 (7)
IA-6
None.
None.
IA-7
IA-7
None.
None.
Identification
and
Authentication
(NonOrganizational
Users)
IA-8
IA-8
None.
None.
Related documents
Intermediate Algebra Overview The academic standards for the
Intermediate Algebra Overview The academic standards for the
File
File
Lab, Chapter 4 Section 2 Parameters
Lab, Chapter 4 Section 2 Parameters
Supplemental Laboratory Accreditation Form
Supplemental Laboratory Accreditation Form
Discoverer Tips regarding changing a Parameter to allow multiple
Discoverer Tips regarding changing a Parameter to allow multiple
User_Guide_template
User_Guide_template
Assignment: organization-defined security safeguards
Assignment: organization-defined security safeguards
Robustness of the concentration model with regard to varying
Robustness of the concentration model with regard to varying
File
File
Download
advertisement