Navigate

CCI-001905

CCI-001905 Definition

The organization defines the actions to be performed in the event of an error when validating the binding of the information producer identity to the information.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

The organization being inspected/assessed defines and documents the actions to be performed in the event of an error when validating the binding of the information producer identity to the information. The organization should consider the system's environment and impact of the errors when defining the actions. Examples of actions include automated notification to administrators, halt system process or read action DoD has determined the actions are not appropriate to define at the Enterprise level.

Validation Procedures

The organization conducting the inspection/assessment obtains and examines the documented actions to ensure the organization being inspected/assessed defines the actions to be performed in the event of an error when validating the binding of the information producer identity to the information. DoD has determined the actions are not appropriate to define at the Enterprise level.

Compelling Evidence

1.) Signed and dated audit and accountability policy 2.) Applicable STIG/SRG checks

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-001905.

Control	Description
AU-10 (2)	The information system: AU-10 (2)(a): Validates the binding of the information producer identity to the information at [Assignment: organization-defined frequency]; and AU-10 (2)(b): Performs [Assignment: organization-defined actions] in the event of a validation error.