Navigate

CCI-002727

CCI-002727 Definition

Defines the mechanisms to be implemented to protect the integrity of the boot firmware in organization-defined system components.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

Determine if [SI-07(10)_ODP[01]; mechanisms to be implemented to protect the integrity of boot firmware in system components are defined] are implemented to protect the integrity of boot firmware in [SI-07(10)_ODP[02]; system components requiring mechanisms to protect the integrity of boot firmware are defined].

Validation Procedures

Examine: [SELECT FROM: System and information integrity policy; system and information integrity procedures; procedures addressing software, firmware, and information integrity; system design documentation; system configuration settings and associated documentation; integrity verification tools and associated documentation; records of integrity verification scans; system audit records; system security plan; other relevant documents or records]. Interview: [SELECT FROM: Organizational personnel responsible for software, firmware, and/or information integrity; organizational personnel with information security responsibilities; system/network administrators; system developer]. Test: [SELECT FROM: Software, firmware, and information integrity verification tools; mechanisms supporting and/or implementing protection of the integrity of boot firmware; safeguards implementing protection of the integrity of boot firmware].

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-002727.

Control	Description
SI-7(10)	Implement the following mechanisms to protect the integrity of boot firmware in [system components requiring mechanisms to protect the integrity of boot firmware are defined;]: [mechanisms to be implemented to protect the integrity of boot firmware in system components are defined;].