NIST SP 800-53 r4 Security Control SA-17: Developer Security Architecture and Design, v4
Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SA-17: Developer Security Architecture and Design. Applicable to HIGH impact systems.
Loading...
Trust Expression:
TD_ref1 and TD_ref2 and TD_ref3 and TD_ref4 and TD_ref5 and TD_ref6
References (6)
TD Developer Security Architecture And Design - Design Specification Describes Security Requirements and Controls, v1.0 | |
---|---|
Description | Defines conformance and assessment criteria for verifying that an organization requires the developer of the information system, system component, or information system service to produce a design specification that accurately and completely describes the required security functionality, and the allocation of security controls among physical and logical components. |
ID | TD_ref1 |
Provider Reference |
TD Developer Security Architecture And Design - Security Architecture Expresses Unified Security Approach, v1.0 | |
---|---|
Description | Defines conformance and assessment criteria for verifying that an organization requires the developer of the information system, system component, or information system service to produce a security architecture that expresses how individual security functions, mechanisms, and services work together to provide required security capabilities and a unified approach to protection. |
ID | TD_ref2 |
Provider Reference |
TD Developer Security Architecture And Design - Security Architecture Consistent With Organizational Architecture, v1.0 | |
---|---|
Description | Defines conformance and assessment criteria for verifying that an organization requires the developer of the information system, system component, or information system service to produce a security architecture that is consistent with and supportive of the organization's security architecture which is established within and is an integrated part of the organization's enterprise architecture. |
ID | TD_ref3 |
Provider Reference |
TD Developer Security Architecture And Design - Security Architecture Describes Security Requirements and Controls, v1.0 | |
---|---|
Description | Defines conformance and assessment criteria for verifying that an organization requires the developer of the information system, system component, or information system service to produce a security architecture that accurately and completely describes the required security functionality, and the allocation of security controls among physical and logical components. |
ID | TD_ref4 |
Provider Reference |
TD Developer Security Architecture And Design - Design Specification Consistent With Organizational Architecture, v1.0 | |
---|---|
Description | Defines conformance and assessment criteria for verifying that an organization requires the developer of the information system, system component, or information system service to produce a design specification that is consistent with and supportive of the organization's security architecture which is established within and is an integrated part of the organization's enterprise architecture. |
ID | TD_ref5 |
Provider Reference |
TD Developer Security Architecture And Design - Design Specification Expresses Unified Security Approach, v1.0 | |
---|---|
Description | Defines conformance and assessment criteria for verifying that an organization requires the developer of the information system, system component, or information system service to produce a design specification that expresses how individual security functions, mechanisms, and services work together to provide required security capabilities and a unified approach to protection. |
ID | TD_ref6 |
Provider Reference |
Sources (1)
SP800-53R4 | NIST Special Publication 800-53 Revision 4, Security and Privacy Controls for Federal Information Systems and Organizations, National Institute of Standards and Technology, April 2013 (Includes updates as of 01-15-2014). Available at http://dx.doi.org/10.6028/NIST.SP.800-53r4. |