Navigate

CCI-002771

CCI-002771 Definition

Validate information output from organization-defined software programs and/or applications to ensure that the information is consistent with the expected content.

Status
Type	CheckType.technical

Master Assessment Datasheet

Implementation Guidance

Determine if information output from [SI-15_ODP; software programs and/or applications whose information output requires validation are defined] is validated to ensure that the information is consistent with the expected content.

Validation Procedures

Examine: [SELECT FROM: System and information integrity policy; system and information integrity procedures; procedures addressing information output filtering; system design documentation; system configuration settings and associated documentation; system audit records; system security plan; other relevant documents or records]. Interview: [SELECT FROM: Organizational personnel responsible for validating information output; organizational personnel with information security responsibilities; system/network administrators; system developer]. Test: [SELECT FROM: Organizational processes for validating information output; automated mechanisms supporting and/or implementing information output validation].

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-002771.

Control	Description
SI-15	Validate information output from the following software programs and/or applications to ensure that the information is consistent with the expected content: [software programs and/or applications whose information output requires validation are defined;].