An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.11.1 - rmfrev5
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.11.1 - rmfrev5
Open sidebar
Navigate
Top
Search
CCIs (
5137
)
Pages (
170/172
)
CCIs
Number
Definition
Status
Related
CCI-005102
Establish and maintain unique identification of the following systems and critical components for tracking through the supply chain.
Draft
SR-4(2)
CCI-005103
Defines the systems and critical system components for tracking through the supply chain.
Draft
SR-4(2)
CCI-005104
Employ the following controls to validate that the system or system component received is genuine.
Draft
SR-4(3)
CCI-005105
Employ the following controls to validate that the system or system component received has not been altered.
Draft
SR-4(3)
CCI-005106
Defines the controls for validating that the system or system component received is genuine.
Draft
SR-4(3)
CCI-005107
Defines the controls for validating that the system or system component received has not been altered.
Draft
SR-4(3)
CCI-005108
Employ organization-defined controls to ensure the integrity of the system and system components by validating the internal composition and provenance of critical or mission essential technologies, products, and services.
Draft
SR-4(4)
CCI-005109
Defines the controls for ensuring the integrity of the system and system components.
Draft
SR-4(4)
CCI-005110
Conduct organization-defined analysis to ensure the integrity of the system and system components by validating the internal composition and provenance of critical or mission essential technologies, products, and services.
Draft
SR-4(4)
CCI-005111
Defines the analysis for ensuring the integrity of the system and system components.
Draft
SR-4(4)
CCI-005112
Employ the following acquisition strategies, contract tools, and procurement methods to protect against, identify, and mitigate supply chain risks.
Draft
SR-5
CCI-005113
Defines the acquisition strategies, contract tools, and procurement methods for protecting against, identifying, and mitigating supply chain risks.
Draft
SR-5
CCI-005114
Employ the following controls to ensure an adequate supply of organization-defined critical system components.
Draft
SR-5(1)
CCI-005115
Defines the controls for ensuring an adequate supply of organization-defined critical system components.
Draft
SR-5(1)
CCI-005116
Defines the critical system components that the organization-defined controls ensure an adequate supply of.
Draft
SR-5(1)
CCI-005117
Assess the system, system component, or system service prior to selection, acceptance, modification, or update.
Draft
SR-5(2)
CCI-005118
Assess and review the supply chain-related risks associated with suppliers or contractors and the system, system component, or system service they provide on an organization-defined frequency.
Draft
SR-6
CCI-005119
Defines the frequency for assessing and reviewing the supply chain risks.
Draft
SR-6
CCI-005120
Employ organizational analysis, independent third-party analysis, organizational testing, and/or independent third-party testing of the following supply chain elements, processes, and actors associated with the system, system component, or system service.
Draft
SR-6(1)
CCI-005121
Defines the supply chain elements, processes, and actors for employing organizational analysis, independent third-party analysis, organizational testing, and/or independent third-party testing.
Draft
SR-6(1)
CCI-005122
Employ the following Operations Security (OPSEC) controls to protect supply chain-related information for the system, system component, or system service.
Draft
SR-7
CCI-005123
Defines the Operations Security (OPSEC) controls that protect supply chain-related information for the system, system component, or system service.
Draft
SR-7
CCI-005124
Establish agreements and procedures with entities involved in the supply chain for the system, system component, or system service for the notification of supply chain compromises, results of assessments or audits, and/or organization-defined information.
Draft
SR-8
CCI-005125
Defines the information for establishing agreements and procedures with entities involved in the supply chain for the system, system component, or system service.
Draft
SR-8
CCI-005126
Implement a tamper protection program for the system, system component, or system service.
Draft
SR-9
CCI-005127
Employ anti-tamper technologies, tool, and techniques throughout the system development life cycle.
Draft
SR-9(1)
CCI-005128
Inspect the following systems or system components at random, at organization-defined frequency, and/or upon organization-defined indications of need for inspection to detect tampering.
Draft
SR-10
CCI-005129
Defines the frequency for inspecting systems or system components.
Draft
SR-10
CCI-005130
Defines the indications of need for inspection for detecting tampering.
Draft
SR-10
CCI-005131
Defines the system or system components which will be inspected at random, at organization-defined frequency, and/or upon organization-defined indications of need for inspection to detect tampering.
Draft
SR-10
Prev
1...
166
167
168
169
170
171
172
Next