SA-19
SA-19: Component Authenticity
The organization:
- a: Develops and implements anti-counterfeit policy and procedures that include the means to detect and prevent counterfeit components from entering the information system; and
- b: Reports counterfeit information system components to [one or more of source of counterfeit component/ {{ insert: param, sa-19_prm_2 }} / {{ insert: param, sa-19_prm_3 }} ].
Supplemental
Sources of counterfeit components include, for example, manufacturers, developers, vendors, and contractors. Anti-counterfeiting policy and procedures support tamper resistance and provide a level of protection against the introduction of malicious code. External reporting organizations include, for example, US-CERT.
CIA Levels | |
---|---|
Confidentiality | unknown |
Integrity | unknown |
Availability | unknown |
Overlays |
---|
None |
CSF Categories |
---|
None |