{ "$TMF_VERSION": "1.4", "PublicationDateTime": "2021-04-26T00:00:00.000Z", "Description": "Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control MA-4 (4): Authentication / Separation of Maintenance Sessions.", "Keywords": [ "800-53", "Authentication / Separation", "Maintenance", "Maintenance Sessions", "NIST", "Security" ], "Issuer": { "Identifier": "https://trustmarkinitiative.org/", "PrimaryContact": { "Email": "help@trustmarkinitiative.org", "Telephone": "555-555-5555", "Kind": "PRIMARY", "WebsiteURL": "https://trustmarkinitiative.org/", "Responder": "" }, "Name": "TMI" }, "Sources": [{ "Identifier": "SP800-53R4", "Reference": "NIST Special Publication 800-53 Revision 4, Security and Privacy Controls for Federal Information Systems and Organizations, National Institute of Standards and Technology, April 2013 (Includes updates as of 01-15-2014). Available at http://dx.doi.org/10.6028/NIST.SP.800-53r4<\/a>.", "$id": "source-2112165102" }], "Name": "NIST SP 800-53 r4 Security Control MA-4 (4): Authentication / Separation of Maintenance Sessions", "TrustExpression": "TD_ref1 and TD_ref2 and TD_ref3", "Identifier": "https://artifacts.trustmarkinitiative.org/lib/tips/nist-sp-800-53-r4-security-control-ma-4-_4__-authentication-_-separation-of-maintenance-sessions/4/", "Version": "4", "References": {"TrustmarkDefinitionRequirements": [ { "Identifier": "https://artifacts.trustmarkinitiative.org/lib/tds/nonlocal-maintenance-_-authentication-_-separation-of-maintenance-sessions-_-logically-separated-communications-paths/1.0/", "Description": "Defines conformance and assessment criteria for verifying that an organization protects nonlocal maintenance sessions by separating the maintenance sessions from other network sessions with the information system by logically separated communications paths based upon encryption.", "Number": 1, "Version": "1.0", "TrustmarkDefinitionReference": { "Identifier": "https://artifacts.trustmarkinitiative.org/lib/tds/nonlocal-maintenance-_-authentication-_-separation-of-maintenance-sessions-_-logically-separated-communications-paths/1.0/", "Description": "Defines conformance and assessment criteria for verifying that an organization protects nonlocal maintenance sessions by separating the maintenance sessions from other network sessions with the information system by logically separated communications paths based upon encryption.", "Number": 1, "Version": "1.0", "Name": "Nonlocal Maintenance | Authentication / Separation Of Maintenance Sessions | Logically Separated Communications Paths" }, "$Type": "TrustmarkDefinitionRequirement", "Name": "Nonlocal Maintenance | Authentication / Separation Of Maintenance Sessions | Logically Separated Communications Paths", "$id": "TD_ref1" }, { "Identifier": "https://artifacts.trustmarkinitiative.org/lib/tds/nonlocal-maintenance-_-authentication-_-separation-of-maintenance-sessions-_-physically-separated-communications-paths/1.0/", "Description": "Defines conformance and assessment criteria for verifying that an organization protects nonlocal maintenance sessions by separating the maintenance sessions from other network sessions with the information system by physically separated communications paths.", "Number": 2, "Version": "1.0", "TrustmarkDefinitionReference": { "Identifier": "https://artifacts.trustmarkinitiative.org/lib/tds/nonlocal-maintenance-_-authentication-_-separation-of-maintenance-sessions-_-physically-separated-communications-paths/1.0/", "Description": "Defines conformance and assessment criteria for verifying that an organization protects nonlocal maintenance sessions by separating the maintenance sessions from other network sessions with the information system by physically separated communications paths.", "Number": 2, "Version": "1.0", "Name": "Nonlocal Maintenance | Authentication / Separation Of Maintenance Sessions | Physically Separated Communications Paths" }, "$Type": "TrustmarkDefinitionRequirement", "Name": "Nonlocal Maintenance | Authentication / Separation Of Maintenance Sessions | Physically Separated Communications Paths", "$id": "TD_ref2" }, { "Identifier": "https://artifacts.trustmarkinitiative.org/lib/tds/nonlocal-maintenance-_-authentication-_-separation-of-maintenance-sessions-_-replay-resistant-authenticators/1.0/", "Description": "Defines conformance and assessment criteria for verifying that an organization protects nonlocal maintenance sessions by employing organization-defined authenticators that are replay resistant.", "Number": 3, "Version": "1.0", "TrustmarkDefinitionReference": { "Identifier": "https://artifacts.trustmarkinitiative.org/lib/tds/nonlocal-maintenance-_-authentication-_-separation-of-maintenance-sessions-_-replay-resistant-authenticators/1.0/", "Description": "Defines conformance and assessment criteria for verifying that an organization protects nonlocal maintenance sessions by employing organization-defined authenticators that are replay resistant.", "Number": 3, "Version": "1.0", "Name": "Nonlocal Maintenance | Authentication / Separation Of Maintenance Sessions | Replay Resistant Authenticators" }, "$Type": "TrustmarkDefinitionRequirement", "Name": "Nonlocal Maintenance | Authentication / Separation Of Maintenance Sessions | Replay Resistant Authenticators", "$id": "TD_ref3" } ]}, "Primary": "false", "LegalNotice": "This document and the information contained herein is provided on an \"AS IS\" basis, and the Georgia Tech Research Institute disclaims all warranties, express or implied, including but not limited to any warranty that the use of the information herein will not infringe any rights or any implied warranties or merchantability or fitness for a particular purpose. In addition, the Georgia Tech Research Institute disclaims legal liability for any loss incurred as a result of the use or reliance on the document or the information contained herein.", "$Type": "TrustInteroperabilityProfile" }