Browse by CCI Identity

ℹ️ The items you can view are limited because you do not have a subscription. Contact us at [email protected] to purchase one.

1 to 20 of 160 matching CCI Identities found

CCI-000016

Automatically remove or disable temporary and emergency accounts after an organization-defined time-period for each type of account.

  • 800-53 :: AC-2 (2)
  • 800-53 Rev. 4 :: AC-2 (2)
  • 800-53 Rev. 5 :: AC-2 (2)
  • 800-53A :: AC-2 (2).1 (ii)
CCI-000018

Automatically audit account creation actions.

  • 800-53 :: AC-2 (4)
  • 800-53 Rev. 4 :: AC-2 (4)
  • 800-53 Rev. 5 :: AC-2 (4)
  • 800-53A :: AC-2 (4).1 (i and ii)
CCI-000044

Enforce the organization-defined limit of consecutive invalid logon attempts by a user during the organization-defined time period.

  • 800-53 :: AC-7 a
  • 800-53 Rev. 4 :: AC-7 a
  • 800-53 Rev. 5 :: AC-7 a
  • 800-53A :: AC-7.1 (ii)
CCI-000048

Display an organization-defined system use notification message or banner to users before granting access to the system that provides privacy and security notices consistent with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidelines.

  • 800-53 :: AC-8 a
  • 800-53 Rev. 4 :: AC-8 a
  • 800-53 Rev. 5 :: AC-8 a
  • 800-53A :: AC-8.1 (ii)
CCI-000050

Retain the notification message or banner on the screen until users acknowledge the usage conditions and take explicit actions to log on to or further access the system.

  • 800-53 :: AC-8 b
  • 800-53 Rev. 4 :: AC-8 b
  • 800-53 Rev. 5 :: AC-8 b
  • 800-53A :: AC-8.1 (iii)
CCI-000051

The organization approves the information system use notification message before its use.

  • 800-53 :: AC-8 a
  • 800-53A :: AC-8.1 (i)
CCI-000056

Retain the device lock until the user reestablishes access using established identification and authentication procedures.

  • 800-53 :: AC-11 b
  • 800-53 Rev. 4 :: AC-11 b
  • 800-53 Rev. 5 :: AC-11 b
  • 800-53A :: AC-11.1 (iii)
CCI-000057

The information system initiates a session lock after the organization-defined time period of inactivity.

  • 800-53 :: AC-11 a
  • 800-53 Rev. 4 :: AC-11 a
  • 800-53 Rev. 5 :: AC-11 a
  • 800-53A :: AC-11.1 (ii)
CCI-000058

The information system provides the capability for users to directly initiate session lock mechanisms.

  • 800-53 :: AC-11 a
  • 800-53 Rev. 4 :: AC-11 a
  • 800-53A :: AC-11
CCI-000060

Conceal, via the device lock, information previously visible on the display with a publicly viewable image.

  • 800-53 :: AC-11 (1)
  • 800-53 Rev. 4 :: AC-11 (1)
  • 800-53 Rev. 5 :: AC-11 (1)
  • 800-53A :: AC-11 (1).1
CCI-000063

The organization defines allowed methods of remote access to the information system.

  • 800-53 :: AC-17 a
  • 800-53 Rev. 4 :: AC-17 a
  • 800-53A :: AC-17.1 (i)
CCI-000066

The organization enforces requirements for remote connections to the information system.

  • 800-53 :: AC-17 e
  • 800-53A :: AC-17.1 (v)
CCI-000067

Employ automated mechanisms to monitor remote access methods.

  • 800-53 :: AC-17 (1)
  • 800-53 Rev. 4 :: AC-17 (1)
  • 800-53 Rev. 5 :: AC-17 (1)
  • 800-53A :: AC-17 (1).1
CCI-000068

Implement cryptographic mechanisms to protect the confidentiality of remote access sessions.

  • 800-53 :: AC-17 (2)
  • 800-53 Rev. 4 :: AC-17 (2)
  • 800-53 Rev. 5 :: AC-17 (2)
  • 800-53A :: AC-17 (2).1
CCI-000097

Restrict the use of organization-controlled portable storage devices by authorized individuals on external systems using organization-defined restrictions.

  • 800-53 :: AC-20 (2)
  • 800-53 Rev. 4 :: AC-20 (2)
  • 800-53 Rev. 5 :: AC-20 (2)
  • 800-53A :: AC-20 (2).1
CCI-000130

Ensure that audit records containing information that establishes what type of event occurred.

  • 800-53 :: AU-3
  • 800-53 Rev. 4 :: AU-3
  • 800-53 Rev. 5 :: AU-3 a
  • 800-53A :: AU-3.1
CCI-000131

Ensure that audit records containing information that establishes when the event occurred.

  • 800-53 :: AU-3
  • 800-53 Rev. 4 :: AU-3
  • 800-53 Rev. 5 :: AU-3 b
  • 800-53A :: AU-3.1
CCI-000132

Ensure that audit records containing information that establishes where the event occurred.

  • 800-53 :: AU-3
  • 800-53 Rev. 4 :: AU-3
  • 800-53 Rev. 5 :: AU-3 c
  • 800-53A :: AU-3.1
CCI-000133

Ensure that audit records containing information that establishes the source of the event.

  • 800-53 :: AU-3
  • 800-53 Rev. 4 :: AU-3
  • 800-53 Rev. 5 :: AU-3 d
  • 800-53A :: AU-3.1
CCI-000134

Ensure that audit records containing information that establishes the outcome of the event.

  • 800-53 :: AU-3
  • 800-53 Rev. 4 :: AU-3
  • 800-53 Rev. 5 :: AU-3 e
  • 800-53A :: AU-3.1
1