Security and Privacy Controls for Information Systems and Organizations

SYSTEM and COMMUNICATIONS PROTECTION

Compliance Assessment Template

banner_norva_

The SYSTEM and COMMUNICATIONS PROTECTION smart Template is included in the Security and Privacy Controls for Information Systems and Organizations (NIST 80-53 Revision 5.2.0) Library which has been developed by the U.S. Department of Commerce's  National Institute of Standards and Technology (NIST).  It establishes controls for systems and organizations.

The controls can be implemented within any organization or system that processes, stores, or transmits information.

What does the SYSTEM and COMMUNICATIONS PROTECTION template cover? 

The SYSTEM and COMMUNICATIONS PROTECTION smart Template addresses the following areas:

  • Policy and Procedures
  • Separation of System and User Functionality
  • Security Function Isolation
  • Information in Shared System Resources
  • Denial-of-Service Protection
  • Resource Availability
  • Boundary Protection
  • Transmission Confidentiality and Integrity
  • Network Disconnect
  • Trusted Path
  • Cryptographic Key Establishment and Management
  • Cryptographic Protection
  • Collaborative Computing Devices and Applications
  • Transmission of Security and Privacy Attributes
  • Public Key Infrastructure Certificates
  • Mobile Code
  • Secure Name/Address Resolution Service (Authoritative Source)
  • Secure Name/Address Resolution Service (Recursive or Caching Resolver)
  • Architecture and Provisioning for Name/Address Resolution Service
  • Session Authenticity
  • Fail in Known State
  • Thin Nodes
  • Decoys
  • Platform-Independent Applications
  • Protection of Information at Rest
  • Heterogeneity
  • Concealment and Misdirection
  • Covert Channel Analysis
  • System Partitioning
  • Non-Modifiable Executable Programs
  • External Malicious Code Identification
  • Distributed Processing and Storage
  • Out-of-Band Channels
  • Operations Security
  • Process Isolation
  • Wireless Link Protection
  • Port and I/O Device Access
  • Sensor Capability and Data
  • Usage Restrictions
  • Detonation Chambers
  • System Time Synchronization
  • Cross Domain Policy Enforcement
  • Alternate Communications Paths
  • Sensor Relocation
  • Hardware-Enforced Separation and Policy Enforcement
  • Software-Enforced Separation and Policy Enforcement
  • Hardware-Based Protection

Can I adapt my own compliance materials into a smart template?

Yes. If you already have compliance materials of your own, you can integrate them into a smart Compliance Template using the included development template. This allows you to supplement NORVA’s Compliance Assessment Templates with your own content while keeping the same practical, structured approach.

Is my data private and secure?

Yes. All templates are encrypted to protect the privacy and confidentiality of your data. NORVA Solutions does not have visibility into any data you enter in your downloaded template.

Back (Small2)