SI-7(1): Integrity Checks

Control Family:

System And Information Integrity

Parent Control:

SI-7: Software, Firmware, And Information Integrity

Priority:

P1: Implement P1 security controls first.

CSF v1.1 References:

PR.DS-6
PR.DS-8

Threats Addressed:

Tampering

Baselines:

Moderate
High

Next Version:

NIST Special Publication 800-53 Revision 5:
SI-7(1): Integrity Checks

Control Statement

The information system performs an integrity check of [Assignment: organization-defined software, firmware, and information] [Selection (one or more): at startup; at [Assignment: organization-defined transitional states or security-relevant events]; [Assignment: organization-defined frequency]].

Supplemental Guidance

Security-relevant events include, for example, the identification of a new threat to which organizational information systems are susceptible, and the installation of new hardware, software, or firmware. Transitional states include, for example, system startup, restart, shutdown, and abort.

Control Statement

Supplemental Guidance

Related Controls

Critical Security Controls Version 8