| Trustmark Definition Name | Version |
|---|---|
|
Addresses requirements for a trusted person representing a PKI certificate applicant when the applicant is unable to perform face-to-face registration.
|
1.0 |
|
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for personnel screening criteria as related to overall personnel security requirements.
|
1.0 |
|
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for personnel screening criteria as related to overall personnel security requirements.
|
1.0 |
|
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for personnel screening criteria as related to overall personnel security requirements.
|
1.0 |
|
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for personnel screening criteria as related to overall personnel security requirements.
|
1.0 |
|
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for personnel screening criteria as related to overall personnel security requirements.
|
1.0 |
|
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for personnel screening criteria as related to overall personnel security requirements.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization: a. Describes the trustworthiness required in the organization-defined information system, information system component, or information system service supporting its critical missions/business functions; and b. Implements an organization-defined assurance overlay to achieve such trustworthiness.
|
1.0 |
|
Addresses requirements for electronic fingerprints to be collected during identity proofing for PKI card issuance.
|
1.0 |
|
Addresses requirements for two Non-Federal Government I.D.s to be used for the purpose of identity proofing.
|
1.0 |
|
Addresses the requirement for two or more persons to be needed for CA key generation.
|
1.0 |
|
Addresses the requirement for two or more persons to be needed for CA signing key backup.
|
1.0 |
|
Addresses the requirement for two or more persons to be needed for CA signing key activation.
|
1.0 |
|
Addresses the requirement for two person physical access control for CA equipment.
|
1.0 |
|
Addresses the requirement for two person physical access control for cryptographic modules.
|
1.0 |
|
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for control of physical ingress and egress as related to overall physical and environmental protection requirements.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an information system purges/wipes information from organization-defined mobile devices based on organization-defined purging/wiping requirements/techniques after organization-defined number consecutive, unsuccessful device logon attempts.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization provides justification and documents approval for the continued use of unsupported system components required to satisfy mission/business needs.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization replaces information system components when support for the components is no longer available from the developer, vendor, or manufacturer.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization provides [Selection (one or more): in-house support; organization-defined support from external providers for unsupported information system components.
|
1.0 |
|
Addresses the requirement for an organization to not include any unverified information in PKI certificates at other than the rudimentary assurance level.
|
1.0 |
|
Defines conformance and assessment criteria for compliance with minimum security requirements for updates to contingency planning training as related to overall contingency planning requirements.
|
1.0 |
|
Defines conformance and assessment criteria for compliance with minimum security requirements for updates to incident response training as related to overall incident response requirements.
|
1.0 |
|
Defines conformance and assessment criteria for compliance with minimum security requirements for updates to plan of action and milestones as related to overall certification accreditation and security assessments requirements.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization authorizes, monitors, and controls the use of organization-defined information system components within the information system for which usage restrictions have been established.
|
1.0 |
