| TIP: NIST SP 800-53 r4 - Security Control Family: Identification and Authentication

NIST SP 800-53 r4 - Security Control Family: Identification and Authentication - Supplemental Controls, v4

Profile of requirements corresponding to all supplemental security controls in NIST Special Publication 800-53, r4, under the control family of Identification and Authentication.

Identifier

https://artifacts.trustmarkinitiative.org/lib/tips/nist-sp-800-53-r4---security-control-family_-identification-and-authentication---supplemental-controls/4/

Publication Date

2021-04-26

Issuing Organization

TMI (https://trustmarkinitiative.org/) View Contact

No Responder

help@trustmarkinitiative.org

555-555-5555

No Mailing Address

Keywords

800-53, Authentication, Identification, NIST, Security, Supplemental

Legal Notice

This document and the information contained herein is provided on an "AS IS" basis, and the Georgia Tech Research Institute disclaims all warranties, express or implied, including but not limited to any warranty that the use of the information herein will not infringe any rights or any implied warranties or merchantability or fitness for a particular purpose. In addition, the Georgia Tech Research Institute disclaims legal liability for any loss incurred as a result of the use or reliance on the document or the information contained herein.

Tree View
Details View

Trust Expression:

TIP_NISTSP80053r4SecurityControlIA25GroupAuthentication and TIP_NISTSP80053r4SecurityControlIA26NetworkAccesstoPrivilegedAccountsSeparateDevice and TIP_NISTSP80053r4SecurityControlIA27NetworkAccesstoNonPrivilegedAccountsSeparateDevice and TIP_NISTSP80053r4SecurityControlIA210SingleSignOn and TIP_NISTSP80053r4SecurityControlIA213OutOfBandAuthentication and TIP_NISTSP80053r4SecurityControlIA31CryptographicBidirectionalAuthentication and TIP_NISTSP80053r4SecurityControlIA33DynamicAddressAllocation and TIP_NISTSP80053r4SecurityControlIA34DeviceAttestation and TIP_NISTSP80053r4SecurityControlIA41ProhibitAccountIdentifiersasPublicIdentifiers and TIP_NISTSP80053r4SecurityControlIA42SupervisorAuthorization and TIP_NISTSP80053r4SecurityControlIA43MultipleFormsofCertification and TIP_NISTSP80053r4SecurityControlIA44IdentifyUserStatus and TIP_NISTSP80053r4SecurityControlIA45DynamicManagement and TIP_NISTSP80053r4SecurityControlIA46CrossOrganizationManagement and TIP_NISTSP80053r4SecurityControlIA47InPersonRegistration and TIP_NISTSP80053r4SecurityControlIA54AutomatedSupportforPasswordStrengthDetermination and TIP_NISTSP80053r4SecurityControlIA55ChangeAuthenticatorsPriortoDelivery and TIP_NISTSP80053r4SecurityControlIA56ProtectionofAuthenticators and TIP_NISTSP80053r4SecurityControlIA57NoEmbeddedUnencryptedStaticAuthenticators and TIP_NISTSP80053r4SecurityControlIA58MultipleInformationSystemAccounts and TIP_NISTSP80053r4SecurityControlIA59CrossOrganizationCredentialManagement and TIP_NISTSP80053r4SecurityControlIA510DynamicCredentialAssociation and TIP_NISTSP80053r4SecurityControlIA512BiometricBasedAuthentication and TIP_NISTSP80053r4SecurityControlIA513ExpirationofCachedAuthenticators and TIP_NISTSP80053r4SecurityControlIA514ManagingContentofPKITrustStores and TIP_NISTSP80053r4SecurityControlIA515FICAMApprovedProductsandServices and TIP_NISTSP80053r4SecurityControlIA85AcceptanceofPIVICredentials and TIP_NISTSP80053r4SecurityControlIA9ServiceIdentificationandAuthentication and TIP_NISTSP80053r4SecurityControlIA91InformationExchange and TIP_NISTSP80053r4SecurityControlIA92TransmissionofDecisions and TIP_NISTSP80053r4SecurityControlIA10AdaptiveIdentificationandAuthentication and TIP_NISTSP80053r4SecurityControlIA11ReAuthentication

References (32)

TIP NIST SP 800-53 r4 Security Control IA-2 (5): Group Authentication, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-2 (5): Group Authentication.
ID	TIP_NISTSP80053r4SecurityControlIA25GroupAuthentication

TIP NIST SP 800-53 r4 Security Control IA-2 (6): Network Access to Privileged Accounts - Separate Device, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-2 (6): Network Access to Privileged Accounts - Separate Device.
ID	TIP_NISTSP80053r4SecurityControlIA26NetworkAccesstoPrivilegedAccountsSeparateDevice

TIP NIST SP 800-53 r4 Security Control IA-2 (7): Network Access to Non-Privileged Accounts - Separate Device, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-2 (7): Network Access to Non-Privileged Accounts - Separate Device.
ID	TIP_NISTSP80053r4SecurityControlIA27NetworkAccesstoNonPrivilegedAccountsSeparateDevice

TIP NIST SP 800-53 r4 Security Control IA-2 (10): Single Sign-On, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-2 (10): Single Sign-On.
ID	TIP_NISTSP80053r4SecurityControlIA210SingleSignOn

TIP NIST SP 800-53 r4 Security Control IA-2 (13): Out-Of-Band Authentication, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-2 (13): Out-Of-Band Authentication.
ID	TIP_NISTSP80053r4SecurityControlIA213OutOfBandAuthentication

TIP NIST SP 800-53 r4 Security Control IA-3 (1): Cryptographic Bidirectional Authentication, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-3 (1): Cryptographic Bidirectional Authentication.
ID	TIP_NISTSP80053r4SecurityControlIA31CryptographicBidirectionalAuthentication

TIP NIST SP 800-53 r4 Security Control IA-3 (3): Dynamic Address Allocation, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-3 (3): Dynamic Address Allocation.
ID	TIP_NISTSP80053r4SecurityControlIA33DynamicAddressAllocation

TIP NIST SP 800-53 r4 Security Control IA-3 (4): Device Attestation, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-3 (4): Device Attestation.
ID	TIP_NISTSP80053r4SecurityControlIA34DeviceAttestation

TIP NIST SP 800-53 r4 Security Control IA-4 (1): Prohibit Account Identifiers as Public Identifiers, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-4 (1): Prohibit Account Identifiers as Public Identifiers.
ID	TIP_NISTSP80053r4SecurityControlIA41ProhibitAccountIdentifiersasPublicIdentifiers

TIP NIST SP 800-53 r4 Security Control IA-4 (2): Supervisor Authorization, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-4 (2): Supervisor Authorization.
ID	TIP_NISTSP80053r4SecurityControlIA42SupervisorAuthorization

TIP NIST SP 800-53 r4 Security Control IA-4 (3): Multiple Forms of Certification, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-4 (3): Multiple Forms of Certification.
ID	TIP_NISTSP80053r4SecurityControlIA43MultipleFormsofCertification

TIP NIST SP 800-53 r4 Security Control IA-4 (4): Identify User Status, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-4 (4): Identify User Status.
ID	TIP_NISTSP80053r4SecurityControlIA44IdentifyUserStatus

TIP NIST SP 800-53 r4 Security Control IA-4 (5): Dynamic Management, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-4 (5): Dynamic Management.
ID	TIP_NISTSP80053r4SecurityControlIA45DynamicManagement

TIP NIST SP 800-53 r4 Security Control IA-4 (6): Cross-Organization Management, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-4 (6): Cross-Organization Management.
ID	TIP_NISTSP80053r4SecurityControlIA46CrossOrganizationManagement

TIP NIST SP 800-53 r4 Security Control IA-4 (7): In-Person Registration, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-4 (7): In-Person Registration.
ID	TIP_NISTSP80053r4SecurityControlIA47InPersonRegistration

TIP NIST SP 800-53 r4 Security Control IA-5 (4): Automated Support for Password Strength Determination, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-5 (4): Automated Support for Password Strength Determination.
ID	TIP_NISTSP80053r4SecurityControlIA54AutomatedSupportforPasswordStrengthDetermination

TIP NIST SP 800-53 r4 Security Control IA-5 (5): Change Authenticators Prior to Delivery, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-5 (5): Change Authenticators Prior to Delivery.
ID	TIP_NISTSP80053r4SecurityControlIA55ChangeAuthenticatorsPriortoDelivery

TIP NIST SP 800-53 r4 Security Control IA-5 (6): Protection of Authenticators, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-5 (6): Protection of Authenticators.
ID	TIP_NISTSP80053r4SecurityControlIA56ProtectionofAuthenticators

TIP NIST SP 800-53 r4 Security Control IA-5 (7): No Embedded Unencrypted Static Authenticators, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-5 (7): No Embedded Unencrypted Static Authenticators.
ID	TIP_NISTSP80053r4SecurityControlIA57NoEmbeddedUnencryptedStaticAuthenticators

TIP NIST SP 800-53 r4 Security Control IA-5 (8): Multiple Information System Accounts, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-5 (8): Multiple Information System Accounts.
ID	TIP_NISTSP80053r4SecurityControlIA58MultipleInformationSystemAccounts

TIP NIST SP 800-53 r4 Security Control IA-5 (9): Cross-Organization Credential Management, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-5 (9): Cross-Organization Credential Management.
ID	TIP_NISTSP80053r4SecurityControlIA59CrossOrganizationCredentialManagement

TIP NIST SP 800-53 r4 Security Control IA-5 (10): Dynamic Credential Association, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-5 (10): Dynamic Credential Association.
ID	TIP_NISTSP80053r4SecurityControlIA510DynamicCredentialAssociation

TIP NIST SP 800-53 r4 Security Control IA-5 (12): Biometric-Based Authentication, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-5 (12): Biometric-Based Authentication.
ID	TIP_NISTSP80053r4SecurityControlIA512BiometricBasedAuthentication

TIP NIST SP 800-53 r4 Security Control IA-5 (13): Expiration of Cached Authenticators, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-5 (13): Expiration of Cached Authenticators.
ID	TIP_NISTSP80053r4SecurityControlIA513ExpirationofCachedAuthenticators

TIP NIST SP 800-53 r4 Security Control IA-5 (14): Managing Content of PKI Trust Stores, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-5 (14): Managing Content of PKI Trust Stores.
ID	TIP_NISTSP80053r4SecurityControlIA514ManagingContentofPKITrustStores

TIP NIST SP 800-53 r4 Security Control IA-5 (15): FICAM-Approved Products and Services, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-5 (15): FICAM-Approved Products and Services.
ID	TIP_NISTSP80053r4SecurityControlIA515FICAMApprovedProductsandServices

TIP NIST SP 800-53 r4 Security Control IA-8 (5): Acceptance of PIV-I Credentials, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-8 (5): Acceptance of PIV-I Credentials.
ID	TIP_NISTSP80053r4SecurityControlIA85AcceptanceofPIVICredentials

TIP NIST SP 800-53 r4 Security Control IA-9: Service Identification and Authentication, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-9: Service Identification and Authentication.
ID	TIP_NISTSP80053r4SecurityControlIA9ServiceIdentificationandAuthentication

TIP NIST SP 800-53 r4 Security Control IA-9 (1): Information Exchange, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-9 (1): Information Exchange.
ID	TIP_NISTSP80053r4SecurityControlIA91InformationExchange

TIP NIST SP 800-53 r4 Security Control IA-9 (2): Transmission of Decisions, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-9 (2): Transmission of Decisions.
ID	TIP_NISTSP80053r4SecurityControlIA92TransmissionofDecisions

TIP NIST SP 800-53 r4 Security Control IA-10: Adaptive Identification and Authentication, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-10: Adaptive Identification and Authentication.
ID	TIP_NISTSP80053r4SecurityControlIA10AdaptiveIdentificationandAuthentication

TIP NIST SP 800-53 r4 Security Control IA-11: Re-Authentication, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control IA-11: Re-Authentication.
ID	TIP_NISTSP80053r4SecurityControlIA11ReAuthentication

Sources (1)

SP800-53R4	NIST Special Publication 800-53 Revision 4, Security and Privacy Controls for Federal Information Systems and Organizations, National Institute of Standards and Technology, April 2013 (Includes updates as of 01-15-2014). Available at http://dx.doi.org/10.6028/NIST.SP.800-53r4.

Also available as XML or JSON