An error occurred:

© 2024 Xylok, LLC

Version: v2024.10.3-0fa4-8a67

Navigate

SC-34 (3)

SC-34 (3): Hardware-Based Protection

The organization:

SC-34 (3)(a): Employs hardware-based, write-protect for [Assignment: organization-defined information system firmware components]; and

SC-34 (3)(b): Implements specific procedures for [Assignment: organization-defined authorized individuals] to manually disable hardware write-protect for firmware modifications and re-enable the write-protect prior to returning to operational mode.

Supplemental

None

CIA Levels
Confidentiality	unknown
Integrity	unknown
Availability	unknown

Overlays
None

Related Controls

The controls below (if any) were marked by NIST as being related to SC-34 (3).

Control	Description
No controls

Enhancements

The controls below (if any) add on to the requirements of SC-34 (3).

Control	Description
No controls

Related CCIs

The CCIs below are tied to SC-34 (3).

CCI	Definition
CCI-002508	The organization defines the information system firmware components for which hardware-based, write-protect is employed.
CCI-002509	The organization employs hardware-based, write-protect for organization-defined information system firmware components.
CCI-002510	The organization defines the individuals authorized to manually disable hardware-based, write-protect for firmware modifications and re-enable the write-protect prior to returning to operational mode.
CCI-002511	The organization implements specific procedures for organization-defined authorized individuals to manually disable hardware-based, write-protect for firmware modifications.
CCI-002512	The organization implements specific procedures for organization-defined authorized individuals to manually re-enable hardware write-protect prior to returning to operational mode.