CM-3(5)
CM-3(5): Automated Security Response
The information system implements [organization-defined security responses] automatically if baseline configurations are changed in an unauthorized manner.
Supplemental
Security responses include, for example, halting information system processing, halting selected system functions, or issuing alerts/notifications to organizational personnel when there is an unauthorized modification of a configuration item.
CIA Levels | |
---|---|
Confidentiality | unknown |
Integrity | high |
Availability | unknown |
Overlays |
---|
None |
CSF Categories |
---|
None |