SI-7(6): Cryptographic Protection

Control Family:

System and Information Integrity

Parent Control:

SI-7: Software, Firmware, and Information Integrity

CSF v1.1 References:

PR.DS-6

Threats Addressed:

Tampering

Baselines:

(Not part of any baseline)

Previous Version:

NIST Special Publication 800-53 Revision 4:
SI-7(6): Cryptographic Protection

Control Statement

Implement cryptographic mechanisms to detect unauthorized changes to software, firmware, and information.

Supplemental Guidance

Cryptographic mechanisms used to protect integrity include digital signatures and the computation and application of signed hashes using asymmetric cryptography, protecting the confidentiality of the key used to generate the hash, and using the public key to verify the hash information. Organizations that employ cryptographic mechanisms also consider cryptographic key management solutions.

Control Statement

Supplemental Guidance

Related Controls

NIST Special Publication 800-53 Revision 5