IA-4(5): Dynamic Management

Control Family:

Identification and Authentication

Parent Control:

IA-4: Identifier Management

CSF v1.1 References:

PR.AC-1
PR.AC-6

Threats Addressed:

Spoofing
Repudiation

Baselines:

(Not part of any baseline)

Previous Version:

NIST Special Publication 800-53 Revision 4:
IA-4(5): Dynamic Management

Control Statement

Manage individual identifiers dynamically in accordance with [Assignment: organization-defined dynamic identifier policy].

Supplemental Guidance

In contrast to conventional approaches to identification that presume static accounts for preregistered users, many distributed systems establish identifiers at runtime for entities that were previously unknown. When identifiers are established at runtime for previously unknown entities, organizations can anticipate and provision for the dynamic establishment of identifiers. Pre-established trust relationships and mechanisms with appropriate authorities to validate credentials and related identifiers are essential.

Control Statement

Supplemental Guidance

Related Controls

NIST Special Publication 800-53 Revision 5