Navigate

CM-3(5)

CM-3(5): Automated Security Response

Implement the following security responses automatically if baseline configurations are changed in an unauthorized manner: [security responses to be automatically implemented are defined;].

Supplemental

Automated security responses include halting selected system functions, halting system processing, and issuing alerts or notifications to organizational personnel when there is an unauthorized modification of a configuration item.

CIA Levels
Confidentiality	unknown
Integrity	high
Availability	unknown

Overlays
DAF Baseline

CSF Categories
None

Related Controls

The controls below (if any) were marked by NIST as being related to CM-3(5).

Control	Description
No controls

Enhancements

The controls below (if any) add on to the requirements of CM-3(5).

Control	Description
No controls

Related CCIs

The CCIs below are tied to CM-3(5).

CCI	Definition
CCI-001743	Defines the security responses to be automatically implemented if baseline configurations are changed in an unauthorized manner.
CCI-001744	Implement organization-defined security responses automatically if baseline configurations are changed in an unauthorized manner.