IA-7: Cryptographic Module Authentication

Control Family:

Identification and Authentication

CSF v1.1 References:

PR.AC-1

PF v1.0 References:

PR.AC-P1

Threats Addressed:

Spoofing

Baselines:

Low
- IA-7
Moderate
- IA-7
High
- IA-7
Privacy
N/A

Previous Version:

NIST Special Publication 800-53 Revision 4:
IA-7: Cryptographic Module Authentication

Control Statement

Implement mechanisms for authentication to a cryptographic module that meet the requirements of applicable laws, executive orders, directives, policies, regulations, standards, and guidelines for such authentication.

Supplemental Guidance

Authentication mechanisms may be required within a cryptographic module to authenticate an operator accessing the module and to verify that the operator is authorized to assume the requested role and perform services within that role.

Control Statement

Supplemental Guidance

Related Controls

NIST Special Publication 800-53 Revision 5

Cloud Controls Matrix v3.0.1