NIEF Certificate Policy Cryptographic Management, v1.0

This Trust Interoperability Profile specifies the requirements needed to meet the NIEF Certificate Policy
Publication Date: 2017-05-18
Issuing Organization:
No Responder support@trustmarkinitiative.org 404-407-8956 75 5th Street NW, Suite 900, Atlanta, GA 30308
Keywords: There are no keywords.
Supersedes:
Legal Notice: This document and the information contained herein is provided on an "AS IS" basis, and the Georgia Tech Research Institute disclaims all warranties, express or implied, including but not limited to any warranty that the use of the information herein will not infringe any rights or any implied warranties or merchantability or fitness for a particular purpose. In addition, the Georgia Tech Research Institute disclaims legal liability for any loss incurred as a result of the use or reliance on the document or the information contained herein.
Loading...

Trust Expression:

TD_1 AND TD_2 AND TD_3 AND TD_4 AND TD_5 AND TD_6 AND TD_7 AND TD_8 AND TD_9 AND TD_10 AND TD_11 AND TD_12 AND TD_13 AND TD_14 AND TD_15 AND TD_16 AND TD_17 AND TD_18 AND TD_19 AND TD_20 AND TD_21 AND TD_22 AND TD_23 AND TD_24 AND TD_25 AND TD_26 AND TD_27 AND TD_28 AND TD_29 AND TD_30 AND TD_31 AND TD_32 AND TD_33 AND TD_34 AND TD_35 AND TD_36 AND TD_37 AND TD_38 AND TD_39 AND TD_40 AND TD_41 AND TD_42 AND TD_43 AND TD_44 AND TD_45 AND TD_46 AND TD_47 AND TD_48 AND TD_49 AND TD_50 AND TD_51 AND TD_52 AND TD_53 AND TD_54 AND TD_55 AND TD_56 AND TD_57 AND TD_58 AND TD_59 AND TD_60 AND TD_61 AND TD_62 AND TD_63 AND TD_64 AND TD_65 AND TD_66 AND TD_67 AND TD_68 AND TD_69 AND TD_70 AND TD_71 AND TD_72 AND TD_73 AND TD_74 AND TD_75 AND TD_76 AND TD_77 AND TD_78 AND TD_79 AND TD_80 AND TD_81 AND TD_82 AND TD_83 AND TD_84 AND TD_85 AND TD_86 AND TD_87 AND TD_88 AND TD_89 AND TD_90 AND TD_91 AND TD_92 AND TD_93 AND TD_94 AND TD_95 AND TD_96 AND TD_97 AND TD_98 AND TD_99 AND TD_100 AND TD_101

References (101)

TD_1
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for access enforcement as related to overall access control requirements.
TD_2
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for approval of system maintenance activities as related to overall maintenance requirements.
TD_3
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for audit record generation capability as related to overall audit and accountability requirements.
TD_4
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for audit record retention as related to overall audit and accountability requirements.
TD_5
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for baseline configuration as related to overall configuration management requirements.
TD_6
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for control of physical ingress and egress as related to overall physical and environmental protection requirements.
TD_7
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for control of publicly accessible areas as related to overall physical and environmental protection requirements.
TD_8
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for coordination with incident response as related to overall physical and environmental protection requirements.
TD_9
This Trustmark Definition addresses the requirement for a system to employ encryption for transmitted information.
TD_10
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for defined and documented system development life cycle security roles and responsibilities as related to overall system and services acquisition requirements.
TD_11
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for defined software installation policies as related to overall configuration management requirements.
TD_12
This Trustmark Definition addresses the requirement for organizations to enforce a discretionary access control policy.
TD_13
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for dissemination of access control policy as related to overall access control requirements.
TD_14
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for dissemination of audit and accountability policy as related to overall audit and accountability requirements.
TD_15
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for dissemination of configuration management policy as related to overall configuration management requirements.
TD_16
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for dissemination of identification and authentication policy as related to overall identification and authentication requirements.
TD_17
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for dissemination of incident response policy as related to overall incident response requirements.
TD_18
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for dissemination of media protection policy as related to overall media protection requirements.
TD_19
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for dissemination of personnel security policy as related to overall personnel security requirements.
TD_20
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for dissemination of physical and environmental protection policy as related to overall physical and environmental protection requirements.
TD_21
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for dissemination of security awareness and training policy as related to overall awareness and training requirements.
TD_22
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for dissemination of system and information integrity policy as related to overall system and information integrity requirements.
TD_23
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for dissemination of system maintenance policy as related to overall maintenance requirements.
TD_24
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for documentation and approval of deviations from defined configuration settings as related to overall configuration management requirements.
TD_25
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for documentation of prohibited and-or restricted configuration items as related to overall configuration management requirements.
TD_26
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for documentation of system maintenance as related to overall maintenance requirements.
TD_27
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for documented access control policy as related to overall access control requirements.
TD_28
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for documented audit and accountability policy as related to overall audit and accountability requirements.
TD_29
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for documented configuration management policy as related to overall configuration management requirements.
TD_30
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for documented incident response policy as related to overall incident response requirements.
TD_31
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for documented media protection policy as related to overall media protection requirements.
TD_32
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for documented personnel security policy as related to overall personnel security requirements.
TD_33
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for documented physical and environmental protection policy as related to overall physical and environmental protection requirements.
TD_34
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for documented system and information integrity policy as related to overall system and information integrity requirements.
TD_35
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for documented system component inventory as related to overall configuration management requirements.
TD_36
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for documented system maintenance policy as related to overall maintenance requirements.
TD_37
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for enforcement of software installation policies as related to overall configuration management requirements.
TD_38
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for escort of visitors as related to overall physical and environmental protection requirements.
TD_39
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for established configuration settings as related to overall configuration management requirements.
TD_40
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for established personnel security requirements as related to overall personnel security requirements.
TD_41
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for event triggered review of physical access logs as related to overall physical and environmental protection requirements.
TD_42
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for forwarding of security incident information as related to overall incident response requirements.
TD_43
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for generation of audit records as related to overall audit and accountability requirements.
TD_44
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for group and role membership as related to overall access control requirements.
TD_45
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for implementation of established configuration settings as related to overall configuration management requirements.
TD_46
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for information security roles in the system development life cycle mapped to individuals as related to overall system and services acquisition requirements.
TD_47
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for initial incident response training as related to overall incident response requirements.
TD_48
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for initial role-based security training as related to overall awareness and training requirements.
TD_49
This Trustmark Definition addresses organizational requirements to monitor intrusion alarms and surveillance equipment.
TD_50
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for key and combination changes as related to overall physical and environmental protection requirements.
TD_51
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for logical separation of publicly accessible information system components as related to overall system and communications protection requirements.
TD_52
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for maintenance of list for authorized physical access as related to overall physical and environmental protection requirements.
TD_53
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for maintenance of physical access logs as related to overall physical and environmental protection requirements.
TD_54
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for malicious code protection - employed at information system entry points as related to overall system and information integrity requirements.
TD_55
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for malicious code protection - periodic scans as related to overall system and information integrity requirements.
TD_56
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for malicious code protection - real-time scans as related to overall system and information integrity requirements.
TD_57
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for malicious code protection - updates as related to overall system and information integrity requirements.
TD_58
This Trustmark Definition addresses the requirement for organizations to enforce a mandatory access control policy.
TD_59
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for monitoring and control of configuration settings as related to overall configuration management requirements.
TD_60
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for monitoring of software installation policy compliance as related to overall configuration management requirements.
TD_61
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for monitoring of system maintenance activity as related to overall maintenance requirements.
TD_62
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for monitoring of visitor activity as related to overall physical and environmental protection requirements.
TD_63
This Trustmark Definition addresses organizational compliance with the NIEF Audit Policy.
TD_64
This Trustmark Definition addresses use limitations on PKI private keys within NIEF.
TD_65
This Trustmark Definition addresses use limitations on PKI public keys within NIEF.
TD_66
This Trustmark Definition addresses organizational compliance with respect to reporting technical security control exceptions to NIEF.
TD_67
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for notification of sanctions as related to overall personnel security requirements.
TD_68
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for performance of system maintenance as related to overall maintenance requirements.
TD_69
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for periodic review of list authorized for physical access as related to overall physical and environmental protection requirements.
TD_70
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for periodic review of physical access logs as related to overall physical and environmental protection requirements.
TD_71
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for personnel termination - organizational notification as related to overall personnel security requirements.
TD_72
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for physical access devices are secured as related to overall physical and environmental protection requirements.
TD_73
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for physical security incident detection and response as related to overall physical and environmental protection requirements.
TD_74
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for physical separation of publicly accessible information system components as related to overall system and communications protection requirements.
TD_75
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for removal from authorized physical access list as related to overall physical and environmental protection requirements.
TD_76
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for re-screening of authorized individuals as related to overall personnel security requirements.
TD_77
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for review and update of system maintenance policy as related to overall maintenance requirements.
TD_78
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for review of configuration management policy as related to overall configuration management requirements.
TD_79
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for review of system component inventory as related to overall configuration management requirements.
TD_80
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for review of system maintenance records as related to overall maintenance requirements.
TD_81
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for sanctions for non-compliance as related to overall personnel security requirements.
TD_82
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for sanitization of media prior to disposal as related to overall media protection requirements.
TD_83
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for sanitization of media prior to release out of organizational control as related to overall media protection requirements.
TD_84
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for sanitization of media prior to reuse as related to overall media protection requirements.
TD_85
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for scheduling of system maintenance as related to overall maintenance requirements.
TD_86
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for screening of individuals prior to authorizing access as related to overall personnel security requirements.
TD_87
This Trustmark Definition addresses organizational requirements for separation of duties.
TD_88
This Trustmark Definition addresses organizational requirements to implement integrity verification tools for information systems.
TD_89
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for supervision of maintenance personnel as related to overall maintenance requirements.
TD_90
This Trustmark Definition addresses organizational requirements to protect against supply chain threats for information systems.
TD_91
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for system configured for essential capabilities as related to overall configuration management requirements.
TD_92
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for system contingency plan roles, responsibilities and assigned individuals as related to overall contingency planning requirements.
TD_93
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for system process isolation as related to overall system and communications protection requirements.
TD_94
This Trustmark Definition addresses the requirement for NIEF-related systems to be used solely for NIEF functions.
TD_95
This Trustmark Definition addresses organizational requirements to provide tamper protection safeguards for information systems.
TD_96
This Trustmark Definition addresses organizational requirements to implement a tamper protection program.
TD_97
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for third-party providers - compliance monitoring as related to overall personnel security requirements.
TD_98
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for third-party providers - compliance with personnel security requirements as related to overall personnel security requirements.
TD_99
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for third-party providers - notification of terminations and transfers as related to overall personnel security requirements.
TD_100
This Trustmark Definition addresses the requirement for a system to provide trusted paths for user access.
TD_101
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for verification of physical access authorizations as related to overall physical and environmental protection requirements.
Also available as XML or JSON