NIST SP 800-53 r4 Security Control SA-17 (4): Informal Correspondence, v4
Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SA-17 (4): Informal Correspondence.
Loading...
Trust Expression:
TD_ref1 and TD_ref2 and TD_ref3 and TD_ref4 and TD_ref5
References (5)
| TD Developer Security Architecture And Design | Informal Correspondence | Informal Correspondence | Informal Top-Level Specification, v1.0 | |
|---|---|
| Description | Defines conformance and assessment criteria for verifying that an organization requires the developer of the information system, system component, or information system service to produce, as an integral part of the development process, an informal descriptive top-level specification that specifies the interfaces to security-relevant hardware, software, and firmware in terms of exceptions, error messages, and effects. |
| ID | TD_ref1 |
| Provider Reference | |
| TD Developer Security Architecture And Design | Informal Correspondence | Informal Top-Level Specification Is Accurate, v1.0 | |
|---|---|
| Description | Defines conformance and assessment criteria for verifying that an organization requires the developer of the information system, system component, or information system service to show that the descriptive informal top-level specification is an accurate description of the interfaces to security-relevant hardware, software, and firmware. |
| ID | TD_ref2 |
| Provider Reference | |
| TD Developer Security Architecture And Design | Informal Correspondence | Informal Top-Level Specification Consistent With Policy Model, v1.0 | |
|---|---|
| Description | Defines conformance and assessment criteria for verifying that an organization requires the developer of the information system, system component, or information system service to show via informal demonstration or convincing argument with formal methods as feasible, that the descriptive informal top-level specification is consistent with the formal policy model. |
| ID | TD_ref3 |
| Provider Reference | |
| TD Developer Security Architecture And Design | Informal Correspondence | Description of Additional Security-Relevant Items, v1.0 | |
|---|---|
| Description | Defines conformance and assessment criteria for verifying that an organization requires the developer of the information system, system component, or information system service to describe the security-relevant hardware, software, and firmware mechanisms not addressed in the descriptive informal top-level specification but strictly internal to the security-relevant hardware, software, and firmware. |
| ID | TD_ref4 |
| Provider Reference | |
| TD Developer Security Architecture And Design | Informal Correspondence | Informal Top-Level Specification Covers Interfaces, v1.0 | |
|---|---|
| Description | Defines conformance and assessment criteria for verifying that an organization requires the developer of the information system, system component, or information system service to show via informal demonstration, that the descriptive informal top-level specification completely covers the interfaces to security-relevant hardware, software, and firmware. |
| ID | TD_ref5 |
| Provider Reference | |
Sources (1)
| SP800-53R4 | NIST Special Publication 800-53 Revision 4, Security and Privacy Controls for Federal Information Systems and Organizations, National Institute of Standards and Technology, April 2013 (Includes updates as of 01-15-2014). Available at http://dx.doi.org/10.6028/NIST.SP.800-53r4. |