| Trustmark Definition Name | Version |
|---|---|
|
Defines privacy requirements related to providing means to dispute the integrity of sensitive information.
|
1.0 |
|
Defines privacy requirements related to providing means to dispute the content of sensitive information.
|
1.0 |
|
Defines privacy requirements related to documenting individuals' disputes over the content of sensitive information.
|
1.0 |
|
Defines privacy requirements related to exceptions to organizations providing individuals with the ability to correct, amend, or delete sensitive information about themselves due to the burdens or expense required.
|
1.0 |
|
Defines privacy requirements related to exceptions to organizations providing individuals with the ability to correct, amend, or delete sensitive information about themselves for the protections of others' rights.
|
1.0 |
|
Defines privacy requirements related to legal exemption from addressing an individual's right to correct their stored sensitive information.
|
1.0 |
|
Defines privacy requirements related to ensuring access and opportunity for the correction of sensitive information held by the sensitive information controller with identified exceptions.
|
1.0 |
|
Defines privacy requirements related to providing means to have erroneous sensitive information corrected.
|
1.0 |
|
Defines privacy requirements related to ensuring that individuals are able to challenge the accuracy of information relating to them held by the sensitive information controller and, if possible, remediate the issue.
|
1.0 |
|
Defines privacy requirements related to enabling individuals to have a role in managing their sensitive information.
|
1.0 |
|
Defines privacy requirements related to organization's providing contacts for redress functions for individuals to address their stored sensitive information.
|
1.0 |
|
Defines privacy requirements related to organizations providing individuals with reasons why requests for information from the information controller are denied, and the ability to challenge the denial.
|
1.0 |
|
Defines privacy requirements for organizations to establish an individual's right to correct their stored sensitive information.
|
1.0 |
|
Defines privacy requirements for organizations to support an individual's right to correct their stored sensitive information.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an information system implements a reference monitor for organization-defined access control policies that is tamperproof, always invoked, and small enough to be subject to analysis and testing, the completeness of which can be assured.
|
1.0 |
|
This Trustmark Definition defines conformance and assessment criteria for Registration Authority (RA) equipment protected from unauthorized access while the cryptographic module is installed and activated.
|
1.0 |
|
Addresses requirements for an organization's Registration Authorities (RAs) to verify the authenticity of a representative requesting PKI certificates in the name of an affiliated organization.
|
1.0 |
|
Addresses requirements for an organization's Registration Authorities (RAs) to verify that representatives requesting PKI certificates in the name of an affiliated organization are authorized to act in the name of that organization.
|
1.0 |
|
Addresses requirements for the associated RAs ensuring that the applicant's identity information is verified in accordance with the process established by the applicable CP.
|
1.0 |
|
Addresses requirements for the associated RAs ensuring that the applicant's identity information is verified in accordance with the process established by the applicable CPS.
|
1.0 |
|
Addresses requirements for an organization's Registration Authorities (RAs) to verify the information in requests for certificates in the name of an affiliated organization.
|
1.0 |
|
Addresses the requirement for registration information to be verified to an assurance level commensurate with the certificate assurance level being requested for device PKI certificates.
|
1.0 |
|
Defines conformance and assessment criteria for compliance with minimum security requirements for reissuance of shared/group credentials as related to overall access control requirements.
|
1.0 |
|
Addresses requirements related to the release of PKI records archive content as determined by the organization or required by law.
|
1.0 |
|
Addresses requirements for the release of PKI records archive data.
|
1.0 |
