An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.07.1-5f5778 - rmfrev4
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.07.1-5f5778 - rmfrev4
Open sidebar
Navigate
Top
Search
CCIs (
5137
)
Pages (
86/172
)
CCIs
Number
Definition
Status
Related
CCI-002581
Defines the types of system media to restrict or prohibit on organization-defined systems or system components using organization-defined controls.
Draft
MP-7
CCI-002582
Defines the systems or system components on which to restrict or prohibit the use of organization-defined types of system media using organization-defined controls.
Draft
MP-7
CCI-002583
Defines the controls to use for restricting or prohibiting the use of organization-defined types of system media on organization-defined systems or system components.
Draft
MP-7
CCI-002584
Restrict or prohibit the use of organization-defined types of system media on organization-defined systems or system components using organization-defined controls.
Draft
MP-7
CCI-002585
Prohibit the use of portable storage devices in organizational systems when such devices have no identifiable owner.
Draft
MP-7(1)
CCI-002586
Prohibit the use of sanitization-resistant media in organizational systems.
Draft
MP-7(2)
CCI-002587
Document system media downgrading actions.
Draft
MP-8(1)
CCI-002588
The organization employs organization-defined tests of downgrading equipment in accordance with organization-defined frequency.
Draft
MP-8(2)
CCI-002589
The organization employs procedures to verify correct performance of organization-defined tests of downgrading equipment in accordance with organization-defined frequency.
Draft
MP-8(2)
CCI-002590
The organization defines tests to employ for downgrading equipment.
Draft
MP-8(2)
CCI-002591
Defines the frequency with which to test downgrading equipment and procedures to ensure correct performance.
Draft
MP-8(2)
CCI-002592
The organization defines Controlled Unclassified Information (CUI).
Draft
MP-8(3)
CCI-002593
Downgrade system media containing Controlled Unclassified Information (CUI) prior to public release.
Draft
MP-8(3)
CCI-002594
Downgrade system media containing classified information prior to release to individuals without required access authorizations.
Draft
MP-8(4)
CCI-002595
The organization establishes an organization-defined information system media downgrading process that includes employing downgrading mechanisms with organization-defined strength and integrity.
Deprecated
MP-8
CCI-002596
The organization establishes and defines an information system media downgrading process that includes employing downgrading mechanisms with organization-defined strength and integrity.
Draft
MP-8
CCI-002597
The organization defines strength and integrity for downgrading mechanisms to establish an organization-defined information system media downgrading process.
Draft
MP-8
CCI-002598
The organization ensures that the information system media downgrading process is commensurate with the security category and/or classification level of the information to be removed and the access authorizations of the potential recipients of the downgraded information.
Draft
MP-8
CCI-002599
The organization defines and identifies the information system media requiring downgrading.
Draft
MP-8
CCI-002600
Downgrade the identified system media using the established process.
Draft
MP-8
CCI-002601
Defines the personnel or roles to whom the system and information integrity policy and procedures are to be disseminated.
Draft
SI-1
CCI-002602
Test firmware updates related to flaw remediation for effectiveness before installation.
Draft
SI-2
CCI-002603
Test firmware updates related to flaw remediation for potential side effects before installation.
Draft
SI-2
CCI-002604
Defines the time period following the release of updates within which security-related software updates are to be installed.
Draft
SI-2
CCI-002605
Install security-relevant software updates within an organization-defined time period of the release of the updates.
Draft
SI-2
CCI-002606
Defines the time period following the release of updates within which security-related firmware updates are to be installed.
Draft
SI-2
CCI-002607
Install security-relevant firmware updates within an organization-defined time period of the release of the updates.
Draft
SI-2
CCI-002608
Establish organization-defined benchmarks for the time taken to apply corrective actions after flaw identification.
Draft
SI-2(3)
CCI-002609
Defines the system components on which organization-defined security-relevant software updates will be automatically installed.
Draft
SI-2(5)
CCI-002610
Defines the system components on which organization-defined security-relevant firmware updates will be automatically installed.
Draft
SI-2(5)
Prev
1...
82
83
84
85
86
87
88
89
90
...172
Next